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(57) A system and method for pushing information 
from a host system to a mobile data communication de- 
vice upon sensing a triggering event is disclosed. A re- 
director program operating at the host system enables a 
user to continuously redirect certain user-selected data 
items from the host system to the user's mobile data com- 
munication device upon detecting that one or more user- 
defined triggering events has occurred. The redirector 
program operates in connection with event-generating 
applications and repackaging systems at the host system 
to configure and detect a particular user-defined event, 
and then to encrypt and repackage the user-selected da- 
ta items in an electronic wrapper prior to pushing the data 
items to the mobile device. 
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Description 

CROSS-REFERENCE TO RELATED APPLICATIONS 

[0001] This application is a continuation-in-part of co- 
pending United States Patent Application Serial No. 
09/401,868, filed September 23,1999, entitled "System 
and Method for Pushing Information from a Host System 
to a Mobile Data Communication Device", which is acon- 
tinuation-in-part of United States Patent Application Se- 
rial No. 09/087,623, filed May 29, 1998, entitled "System 
and Method for Pushing Information from a Host System 
to a Mobile Data Communication Device". Both of these 
applications are assigned to the assignee of the instant 
application and are incorporated in their entirety herein 
by reference. 

BACKGROUND OF THE INVENTION 

1 . Field of the Invention 

[0002] The present invention is directed toward the 
field of redirecting information between a host system 
and a mobile data communication device. 

2. Description of the Related Art 

[0003] Present systems and methods for replicating 
information from a host system to a user's mobile data 
communication device are typically "synchronization" 
systems in which the user's data items are warehoused 
(or stored) at the host system for an indefinite period of 
time until the user synchronizes the mobile device to the 
host system. In these types of systems and methods, 
when replication of the warehoused data items to the 
mobile device is desired, the user typically places the 
mobile device in an interface cradle that is electrically 
connected to the host system via some form of local, 
dedicated communication, such as a serial cable or an 
infrared or other type of wireless link. Software executing 
on the mobile data communication device then transmits 
commands via the local communications link to the host 
system to cause the host to begin transmitting the user's 
data items for storage in a memory bank of the mobile 
device. 

[0004] In these synchronization schemes, the mobile 
unit "pulls" the warehoused information from the hostsys- 
tem in a batch-mode each time the user desires to rep- 
licate information between the two devices. Thus, the two 
systems (host and mobile) maintain the same data items 
only after a user-initiated synchronization sequence. 
[0005] A general problem with these synchronization 
systems is the fact that the data in the mobile device is 
only current at the moment of synchronization with the 
host. Five minutes later a new message could be sent to 
the user, but the user would not receive that message 
until the next time the systems are synchronized. Thus, 
a user may fail to respond to an emergency update or 



message because the user only periodically synchroniz- 
es the system, such as once per day. 
[0006] Other problems with these systems include: (1 ) 
the amount of data to be reconciled between the host 

5 and the mobile device can become large if the user does 
not "synchronize" on a daily or hourly basis, leading to 
bandwidth difficulties, particularly when the mobile de- 
vice is communicating via a wireless packet-switched 
network; and (2) reconciling large amounts of data, as 

^0 can accrue in these batch-mode synchronization sys- 
tems, can require a great deal of communication between 
the host and the mobile device, thus leading to a more 
complex, costly and energy-inefficient system. 
[0007] Thus, there is a general need in this field for a 

^5 more automated, continuous, efficient, flexible, and reli- 
able system of ensuring that user data items are repli- 
cated (in real time) at the user's mobile device. 

SUMMARY OF THE INVENTION 

20 

[0008] A system and method for pushing information 
from a host system to a mobile data communication de- 
vice upon sensing a triggering event is provided. A redi- 
rector program operating at the host system enables a 
25 user to continuously redirect certain user-selected data 
items from the host system to the user's mobile data com- 
munication device upon detecting that one or more user- 
defined triggering events has occurred. The redirector 
program operates in connection with event generating 
30 applications and repackaging systems at the host system 
to configure and detect a particular user-defined event, 
and then to repackage the user-selected data items in 
an electronic wrapper prior to pushing the data items to 
the mobile device. 
35 [0009] Using the redirector program, the user can se- 
lect certain data items for redirection, such as E-mail 
messages, calendar events, meeting notifications, ad- 
dress entries, journal entries, personal reminders etc. 
Having selected the data items for redirection, the user 
^0 can then configure one or more event triggers to be 
sensed by the redirector program, which then initiates 
redirection of the user data items upon sensing one or 
more of the event triggers. These user-defined trigger 
points (or event triggers) may be external events, internal 
^5 events or networked events. Once an event has triggered 
redirection of the user data items, the host system then 
repackages these items in a manner that is transparent 
to the mobile data communication device, so that infor- 
mation on the mobile device appears similar to informa- 
50 tion on the user's host system. 

[0010] The redirector program also provides a set of 
software-implemented control functions for determining 
the type of mobile data communication device and its 
address, for programming a preferred list of message 
55 types that are to be redirected, and for determining 
whether the mobile device can receive and process cer- 
tain types of message attachments, such as word proc- 
essor or voice attachments. The mobile device control 
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functions are initially set by the user of the mobile device 
at the host system. These functions can then be altered 
on a global or per message basis by transmitting a com- 
mand message from the mobile device to the host sys- 
tem. 

[0011] In an alternative embodiment, the redirector 
program executes on a network server, and the server 
is programmed to detect numerous redirection event trig- 
gers over the network from multiple user desktop com- 
puters coupled to the server via a local-area-network 
("LAN"). The server can receive internal event triggers 
from each of the user desktops via the network, and can 
also receive external event triggers, such as messages 
from the users' mobile data communication devices. In 
response to receiving one of these triggers, the server 
redirects the user's data items to the proper mobile data 
communication device. This alternative configuration 
could also include an Internet or Intranet-located web 
server including the redirector program that could be ac- 
cessible through a secure Web page or other user inter- 
face. In this configuration, the redirector program could 
be located on an Internet Service Provider ("ISP") system 
or an Application Service Provider ("ASP") system, and 
the user would configure (and reconfigure) the program 
controls over an Internet connection to the ISP or ASP 
system. 

[0012] In another embodiment, the redirector program 
operates at both the host system and at the user's mobile 
data communication device. In this configuration, the us- 
er's mobile device operates similarly to the host system 
described below, and is configured in a similar fashion 
to push certain user-selected data items from the mobile 
device to the user's host system (or some other compu- 
ter) upon detecting an event trigger at the mobile device. 
This configuration provides two-way pushing of informa- 
tion from the host to the mobile device and from the mo- 
bile device to the host. 

[0013] A primary advantage of the present invention 
is that it provides a system and method for triggering the 
continuous and real-time redirection of user-selected da- 
ta items from a host system to a mobile data communi- 
cation device. Other advantages of the present invention 
include: (1 ) flexibility in defining the types of user data to 
redirect, and in defining a preferred list of message types 
that are to be redirected or preferred senders whose mes- 
sages are to be redirected; (2) flexibility in configuring 
the system to respond to numerous internal, external and 
networked triggering events; (3) transparent repackaging 
of the user data items in a variety of ways such that the 
mobile data communication device appears as though it 
were the host system; (4) integration with other host sys- 
tem components such as E-mail, TCP/IP, keyboard, 
screen saver, Web pages and certain programs that can 
either create user data items or be configured to provide 
trigger points; and (5) the ability to operate locally on a 
user's desktop system or at a distance via a network serv- 
er or through a secure Internet connection. 
[001 4] A method of redirecting data items from a mes- 



saging host system to a user's mobile device in accord- 
ance with an aspect of the invention comprises the steps 
of detecting a new data item for the user at the messaging 
host system, forwarding a copy of the new data item to 

5 a redirector host system, determining whether the new 
data item should be redirected from the redirector host 
system to the user's mobile device, and if the new data 
item should be redirected, then encrypting the new data 
item to form an encrypted new data item and packaging 

^0 the encrypted new data item into an electronic envelope 
and transmitting the electronic envelope to the user's mo- 
bile device. A new data item is preferably also stored in 
a user's Inbox coupled to the messaging host system. 
New data items may be detected at the host system by 

^5 determining whether a new data item has been received 
at the messaging host system for a particular user and 
checking a forwarding file coupled to the messaging host 
system to determine whether the particular user's data 
items should be redirected to the redirector host system. 

20 A set of filtering rules, which are preferably remotely con- 
figurable by a user, may be applied by the redirector host 
system in determining whether a new data item should 
be redirected to the user's mobile device. A configurable 
activation/deactivation switch is also preferably provided 

25 for turning on/off the operation of the redirector host sys- 
tem for a particular user. 

[001 5] At the user's mobile device, the steps of receiv- 
ing the electronic envelope, extracting the encrypted new 
data item from the electronic envelope and decrypting 

30 the encrypted new data item to recover the new data item 
are performed. The decrypting step may comprise the 
step of using a cipher algorithm and a decryption key to 
decrypt the encrypted new data item. The decryption key 
may be generated at the redirector host system and for- 

35 warded to the mobile device using a secure communica- 
tions link, such as by using Internet Message Access 
Protocol (I MAP) over Secure Sockets Layer (SSL) pro- 
tocol or a serial connection between the redirector host 
system and the device. At the redirector host system, the 

^0 encrypting step may similarly involve a cipher algorithm 
and an encryption key, which may be generated and 
stored at the redirector host system. The encryption and 
decryption keys may instead be generated at a computer 
system associated with the mobile device or even at the 

^5 mobile device itself. Public key cryptographic operations 
are also contemplated. 

[0016] In a preferred embodiment, the data items are 
E-mail messages, and the messaging host system is an 
E-mail host system. In a further embodiment, the mes- 

50 saging host system is an Internet Service Provider. 

[001 7] According to another embodiment, a method of 
redirecting E-mail messages from a messaging host sys- 
tem to a user's wireless mobile device comprises the 
steps of detecting an E-mail message for the user at the 

55 messaging host system, forwarding a copy of the E-mail 
message from the messaging host system to a wireless 
redirector host system, receiving the forwarded E-mail 
message at the wireless redirector host system and ap- 
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plying a set of user-defined filtering rules that determine 
whether or not to redirect the E-mail to the user's wireless 
mobile device via a wireless network coupled to the wire- 
less redirector host system, and if the filtering rules de- 
termine that the E-mail message is of the type that should 
be redirected, then encrypting the E-mail message to 
form an encrypted E-mail message and redirecting the 
encrypted E-mail message to the user's wireless mobile 
device by packaging the encrypted E-mail message in 
an electronic envelope that includes a wireless network 
address of the user's wireless mobile device. 
[0018] A system for redirecting data items from a net- 
work to a user's wireless mobile device in accordance 
with an aspect of the invention comprises a messaging 
host system coupled to the network for receiving data 
items associated with a particular user and for forwarding 
the received data items to a predetermined address on 
the network and a redirector host system associated with 
the predetermined address for receiving the forwarded 
data items from the messaging host system and for en- 
crypting and redirecting those data items to the user's 
wireless mobile device. The messaging host system may 
include a sendmai I program for receiving and transmitting 
user data items and a forwarding file containing a list of 
authorized users of the system, and the predetermined 
address to which the messaging host system will forward 
each user's data items. The redirector host system pref- 
erably comprises an encryption module that encrypts the 
fonwarded data items from the messaging host system, 
and the mobile device preferably comprises a decryption 
module. Encryption and decryption keys used by these 
modules may be generated and distributed via any of the 
mechanisms described above. 

[0019] A still further embodiment of the invention re- 
lates to a method of operating a host system configured 
to redirect E-mail messages from the Internet to a user's 
wireless mobile device, the method comprising the steps 
of receiving an E-mail message from the Internet for a 
particular user, accessing a user profile database to de- 
termine whether the particular user is an authorized user 
of the host system, if the user is an authorized user, then 
accessing a filter rules database to apply a set of user- 
defined filtering rules to the E-mail message that dictate 
whether the E-mail message is the type of message that 
the user wants to have redirected to its wireless mobile 
device, and if the E-mail message clears the filtering 
rules, then encrypting the E-mail message and repack- 
aging the encrypted E-mail message into an electronic 
envelope including the address of the user's wireless mo- 
bile device and forwarding the electronic envelope to a 
wi reless gateway system for transmission onto a wireless 
data network associated with the user's wireless mobile 
device. 

[0020] A method for redirecting messages between an 
ISP host system and a plurality of mobile data commu- 
nication devices in accordance with another preferred 
embodiment comprises the steps of configuring redirec- 
tion settings for one or more mobile device users at the 



host system, receiving incoming messages directed to a 
first address at the ISP host system from a plurality of 
message senders, in response to the redirection setting, 
continuously encrypting and redirecting the incoming 

5 messages from the ISP host system to the mobile data 
communication device via a redirector host system, re- 
ceiving encrypted outgoing messages generated and en- 
crypted at the mobile communications device at the re- 
director host system, decrypting the received encrypted 

^0 outgoing messages to recover the outgoing messages, 
configuring address information of the outgoing messag- 
es so that the first address is used as an originating ad- 
dress of the outgoing messages, and transmitting the 
configured outgoing messages to message recipients. 

15 [0021] A further inventive method of redirecting elec- 
tronic data items from a host system associated with a 
user to the user's mobile data communication device 
comprises the steps of configuring an external redirection 
event atthe host system, wherein the external redirection 

20 event is the host system sensing whether the user is in 
the physical vicinity of the host system, receiving elec- 
tronic data items at the host system, and if the host sys- 
tem senses that the user is not in the physical vicinity of 
the host system, then continuously encrypting the elec- 

25 tronicdata items and redirecting the encrypted data items 
to the user's mobile data communication device until the 
host system senses that the user is in the vicinity of the 
host system. The sensing may be achieved by a heat 
sensor detecting a lack of heat emitted by the user, by a 

30 motion sensor detecting a lack of motion by the user, or 
by removal of the mobile device from a mobile device 
cradle connected to the host system for example. 
[0022] In a system for redirecting data items between 
a host system and a mobile communications device 

35 through a redirector system, a novel method of key dis- 
tribution comprises the steps of generating an encryption 
key for encrypting data items to be redirected to the mo- 
bile device, generating a decryption key for decrypting 
encrypted and redirected data items received at the mo- 

^0 bile device, and fonwarding the decryption key to the mo- 
bile device using a secure communications link. The 
steps of generating the encryption key and generating 
the decryption key may be performed at the redirector 
system, at the host system, at a computer system oper- 

^5 atively connected to the host system or at the device. 
The encryption key and the decryption key may both be 
private keys, or the encryption key may be a public key 
and the decryption may be a private key of a key pair. 
Data items to be sent from the mobile device may be 

50 encrypted at the device using a second encryption key 
and decrypted when received at the redirector system 
using a second decryption key. 

[0023] In a related embodiment, a key distribution sys- 
tem in a system for redirecting data items between a host 
55 system and a mobile communications device through a 
redirector system comprises means for generating an 
encryption key for encrypting data items prior to redirec- 
tion to the mobile device, means for generating adecryp- 
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tion key for decrypting encrypted and redirected data 
items received at the mobile device, and means for for- 
warding tine decryption key to tine mobile device using a 
secure communications link. 

[0024] These are just a few of the many advantages 
of the present invention, as described in more detail be- 
low. As will be appreciated, the invention is capable of 
other and different embodiments, and its several details 
are capable of modifications in various respects, all with- 
out departing from the spirit of the invention. Accordingly, 
the drawings and description of the preferred embodi- 
ments set forth below are to be regarded as illustrative 
in nature and not restrictive. 

BRIEF DESCRIPTION OF THE DRAWINGS 

[0025] The present invention satisfies the needs noted 
above as will become apparent from the following de- 
scription when read in conjunction with the accompany- 
ing drawings wherein: 

FIG. 1 is a system diagram showing the redirection 
of user data items from a user's desktop PC (host 
system) to the user's mobile data communication de- 
vice, where the redirector software is operating at 
the user's desktop PC; 

FIG. 2 is a system diagram showing the redirection 
of user data items from a network server (host sys- 
tem) to the user's mobile data communication de- 
vice, where the redirector software is operating at 
the server; 

FIG. 3 is a block diagram showing the interaction of 
the redirector software with other components of the 
host system in FIG. 1 (the user's desktop PC) to en- 
able the pushing of information from the host system 
to the user's mobile data communication device; 

FIG. 4 is a flow chart showing the steps carried out 
by the redirector software operating at the host sys- 
tem; 

FIG. 5 is a flow chart showing the steps carried out 
by the mobile data communication device to inter- 
face with the redirector software operating at the host 
system; 

FIG. 6 is a system diagram showing the redirection 
of user data items from a user's host system to the 
user's mobile data communication device, where the 
redirector software is operating at the wireless redi- 
rector host system; 

FIG. 7 is a block diagram showing the interaction of 
the redirector software with other components of the 
host system in FIG. 6 to enable the pushing of infor- 
mation from the host system to the user's mobile 



data communications device; 

FIG. 8 is a flow chart showing the steps carried out 
by the redirector software operating at the wireless 
5 redirector host system. 

FIG. 9 is a block diagram showing the interaction of 
the redirector send agent software with other com- 
ponents of the host systems to enable the pushing 
^0 of information from the host system to the user's mo- 
bile data communications device; 

FIG. 10 is a block diagram showing the interaction 
of the redirector receive agent software with other 
^5 components of the host systems to enable the push- 
ing of information to the Internet from the user's mo- 
bile data communications device; 

FIG. 11 is a flowchart showing the steps carried out 
20 by the redirector receive agent operating at the re- 
director agent host server in the case of redirecting 
E-mail messages with domain-massaging and tag 
line customization; 

25 FIG. 12 is a hierarchical view of an example of the 
different types of domains, represented by sites, 
which can interface with a single redirector system; 

FIG. 13 is a system diagram showing the redirection 
30 of user data items from a user's host system to the 
user's mobile data communication device, where the 
redirector software encrypts redirected data items; 

FIG. 14 is a system diagram similar to FIG. 13, but 
35 showing the redirector software as part of an inte- 
grated messaging/redirection host system; 

FIG. 15 is a block diagram showing the interaction 
of redirector software with other components of the 
^0 messaging host system in FIG. 14 to enable the 
pushing of information from the host system to the 
user's mobile data communications device and from 
the device to the host system; 

^5 FIG. 16 is a block diagram showing the interaction 

of distributed redirector agent software components 
with other components of the host system, including 
multiple domain systems hosted by a service provid- 
er that operates the redirector software; 

50 

FIG. 17 is a hierarchical view of an example of dif- 
ferent types of domains, represented by sites, which 
can interface with a single integrated redirector sys- 
tem; 

55 

FIG. 18 is a block diagram showing the interaction 
of an integrated messaging/redirection software with 
other components of an external host system to en- 
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able the pushing of information from the host system 
to the user's mobile data communications device 
through the integrated messaging/redirection sys- 
tem; and 

FIG. 1 9 is a block diagram showing a variation of the 
system in FIG. 18, wherein the redirector software 
shares messaging components with the messaging 
system. 

DETAILED DESCRIPTION OF THE DRAWINGS 

[0026] Referring now to the drawings, FIG. 1 is an ex- 
ample system diagram showing the redirection of user 
data items (such as message A or C) from a user's desk- 
top PC (host system) 1 0A to the user's mobile data com- 
munication device 24, where the redirector software 12 
is operating at the user's PC 1 0A. As used in this appli- 
cation, the term "host system" refers to the computer 
where the redirector software is operating. In the pre- 
ferred embodiment, the host system is a user's desktop 
PC 10A. Alternatively, however, the host system could 
be a network server (1 OB, see FIG. 2) connected to the 
user's PC via a local-area network ("LAN"), or it could be 
a Web server (240, see FIG. 6) operating through a se- 
cure network connection or operating at an external ISP, 
or the host system could be any other system that is 
capable of communicating with the user's desktop PC. 
[0027] Message A in FIG. 1 represents an internal 
message sent from desktop 26 to the user's host system 
10A via LAN 14. Message C in FIG. 1 represents an 
external message from a sender that is not directly con- 
nected to LAN 14, such as the user's mobile data com- 
munication device 24, some other user's mobile device 
(not shown), or any user connected to the Internet 18. 
Message C also represents a command message from 
the user's mobile data communication device 24 to the 
host system 10A. As described in more detail in FIG. 3, 
the desktop host system 10A preferably includes, along 
with the typical hardware and software associated with 
a workstation or desktop computer, the redirector pro- 
gram 12, a TCP/IP subsystem 42, a primary message 
store 40, an E-mail subsystem 44, a screen saver sub- 
system 48, and a keyboard subsystem 46. 
[0028] In FIG. 1, the host system 10A is the user's 
desktop system, typically located in the user's office. The 
desktop hostsystem 1 0A is connected to a LAN 1 4, which 
also connects to other computers 26, 28 that may be in 
the user's office or elsewhere. The LAN 14, in turn, is 
connected to a wide area network ("WAN") 1 8, preferably 
the Internet, which is defined by the use of the Transmis- 
sion Control Protocol/Internet Protocol ("TCP/IP") to ex- 
change information, but which, alternatively, could be any 
other type of WAN. The connection of the LAN 14 to the 
WAN 18 is via high bandwidth link 16, typically a T1 or 
T3 connection. The WAN 18 in turn is connected to a 
variety of gateways 20, via connections 32. A gateway 
forms a connection or bridge between the WAN 18 and 



some other type of network, such as an RF wireless net- 
work, cellular network, satellite network, or other syn- 
chronous or asynchronous land-line connection. 
[0029] In the example of FIG. 1, a wireless gateway 

5 20 is connected to the Internet for communicating via 
wireless Iink22 to aplurality of wireless mobiledata com- 
munication devices 24. Also shown in FIG. 1 is machine 
30, which could be a FAX machine, a printer, a system 
for displaying images (such as video) or a machine ca- 

^0 pable of processing and playing audio files, such as a 
voice mail system. 

[0030] The present invention includes the ability to re- 
direct certain message attachments to such an external 
machine 30 if the redirector program configuration data 

^5 reflects that the mobile device 24 cannot receive and 
process the attachments, or if the user has specified that 
certain attachments are not to be forwarded to mobile 
device 24, even if such device can process those attach- 
ments. By way of example, consider an E-mail sent to a 

20 userthat includes three attachments - a word processing 
document, a video clip and an audio clip. The redirection 
program 12 could be configured to send the text of the 
E-mail to the remote device 24, to send the word process- 
ing document to a networked printer located near the 

25 user, to send the video clip to a memory store accessible 
through a secure connection through the internet and to 
send the audio clip to the user's voice mail system. 
[0031 ] This example is not intended to limit the breadth 
and scope of the invention, but rather to illustrate the 

30 variety of possibilities embodied in the redirection con- 
cept. 

[0032] The preferred mobile data communication de- 
vice 24 is a hand-held two-way wireless paging compu- 
ter, a wirelessly enabled palm-top computer, a mobile 

35 telephone with data messaging capabilities, or a wire- 
lessly enabled laptop computer, but could, alternatively 
be other types of mobile data communication devices 
capable of sending and receiving messages via a net- 
work connection 22. Although it is preferable for the sys- 

^0 tem to operate in a two-way communications mode, cer- 
tain aspects of the invention could be beneficially used 
in a "one and one-half or acknowledgment paging envi- 
ronment, or even with a one-way paging system. The 
mobile data communication device 24 includes software 

^5 program instructions that work in conjunction with the 
redirector program 12 to enable the seamless, transpar- 
ent redirection of user-selected data items. FIG. 4 de- 
scribes the basic method steps of the redirector program 
1 2, and FIG. 5 describes the steps of the corresponding 

50 program operating at the mobile device 24. 

[0033] In an alternative embodiment of the present in- 
vention, not explicitly shown in the drawings, the mobile 
device 24 also includes a redirector program. In this em- 
bodiment, user selected data items can be replicated 

55 from the host to the mobile device and vice versa. The 
configuration and operation of the mobile device 24 hav- 
ing a redirector program is similar to that described herein 
with respect to FIGs. 1-4. 
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[0034] A user of the present invention can configure 
tine redirector program 12 to pusli certain user-selected 
data items to the user's mobile data communication de- 
vice 24 when the redirector 12 detects that a particular 
user-defined event trigger (or trigger point) has taken 
place. User-selected data items preferably include E- 
mail messages, calendar events, meeting notifications, 
address entries, journal entries, personal alerts, alarms, 
warnings, stockquotes, news bulletins, etc. Alternatively, 
the user-selected data items could include any other type 
of message that is transmitted to the host system 10A, 
or that the host system 1 0A acquires through the use of 
intelligent agents, such as data that is received after the 
host system 1 0A initiates a search of a database, a Web 
site or a bulletin board. In some instances, only a portion 
of the data item is transmitted to the mobile device 24 in 
order to minimize the amount of data transmitted via the 
wireless network 22. In these instances, the mobile de- 
vice 24 can optionally send a command message (C) to 
the host system 10A to retrieve more or all of the data 
item if the user desires to receive it. 
[0035] The user-defined event triggers include exter- 
nal events, internal events and networked events. Exter- 
nal events preferably include: (1) receiving a command 
message (such as message C) from the user's mobile 
data communication device to begin redirection, or to ex- 
ecute some other command at the host, such as a com- 
mand to enable the "preferred list mode" (described be- 
low), or to add or subtract a particular sender from the 
preferred list of the preferred list mode; (2) receiving a 
similar message from some external computer; and (3) 
sensing that the user is no longer in the vicinity of the 
host system; although, alternatively, an external event 
can be any other detectable occurrence that is external 
to the host system 1 0. 

[0036] Internal events may include a calendar alarm, 
screen saver activation, keyboard timeout, programma- 
ble timer, or any other user-defined event that is internal 
to the host system 10. Networked events are user-de- 
fined messages that are transmitted to the host system 
from another computer coupled to the host system 10A 
via a network to initiate redirection. These are just some 
of the event triggers that could be used with the present 
invention to initiate replication of the user-selected data 
items from the host system 1 0A to the mobile device 24. 
Other types of triggers are also within the scope of the 
present invention. 

[0037] FIG. 1 shows an E-mail message A being com- 
municated over LAN 14 from computer 26 to the user's 
desktop system 10A (also shown in FIG. 1 is an external 
message C, which could be an E-mail message from an 
Internet user, or could be a command message from the 
user's mobile device 24). Once the message A (or C) 
reaches the primary message store of the host system 
1 0A, it can be detected and acted upon by the redirection 
software 12. The redirection software 12 can use many 
methods of detecting new messages. The preferred 
method of detecting new messages is using Microsoft's 



TM Messaging API ("MAPI"), in which programs, such 
as the redirector program 12, register for notifications or 
'advise syncs' when changes to a mailbox take place. 
Other methods of detecting new messages could also 
5 be used. 

[0038] Assuming that the redirector program 12 is ac- 
tivated, and has been configured by the user (either 
through the sensing of an internal, external, or networked 
event) to replicate certain user data items (including mes- 

^0 sages of type A or C) to the mobile device 24, when the 
message A is received at the host system 1 0A, the redi- 
rector program 1 2 detects its presence and prepares the 
message for redirection to the mobile device 24. In pre- 
paring the message for redirection, the redirector pro- 

^5 gram 12 may compress the original message A, it may 
just compress the message header, or it may encrypt the 
entire message A to create a secure link to the mobile 
device 24. 

[0039] The address of the user's mobile data commu- 
te nication device 24, the type of device, and whether the 
device 24 can accept certain types of attachments, such 
as word processing or voice attachments, are also pro- 
grammed into the redirector 12. If the user's type of mo- 
bile device cannot accept a particular type of attach- 
25 ments, then the redirector 1 2 can be programmed to route 
those attachments to a fax or voice number where the 
user is located using an attached fax or voice machine 30. 
[0040] The redirector 1 2 may also be programmed with 
a "preferred list mode" operation that is configured by the 
30 user either at the host system 1 0A, or remotely from the 
user's mobile data communication device 24 by trans- 
mitting a command message C. The "preferred list" in 
the "preferred list mode" contains a list of senders (other 
users) whose messages are to be redirected, or it may 
35 contain a list of message characteristics that determine 
whether a message is to be redirected, or it may contain 
both a list of senders and a list of message characteris- 
tics. For example, a message characteristic may relate 
to the size of the message, or the type of message, or 
^0 whether the message has any attachments, or whether 
the message is originating from a particular domain. If 
activated, the preferred list mode causes the redirector 
program 1 2 to operate like a filter, only redirecting certain 
user data items based on whether the data item was sent 
^5 from a sender on the preferred listor has certain message 
characteristics that if present will trigger or suppress re- 
direction of the message. 

[0041] In the example of FIG. 1 , if desktop system 26 
was operated by a user on the preferred list of host sys- 

50 tem 1 0A, and the preferred list option was activated, then 
message A would be redirected. If, however, desktop 26 
was operated by a user not on the host system's preferred 
list, then message A would not be redirected, even if the 
user of the host system had configured the redirector to 

55 push messages of type A. The user of the host system 
1 0A can configure the preferred listdirectly from the desk- 
top system 10A, or, alternatively, the user can send a 
command message (such as C) from the mobile device 
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24 to the desktop system 10A to activate the preferred 
list mode, or to add or delete certain senders or message 
characteristics from the previously configured preferred 
list. In this manner, the user can remotely control the 
operation of the preferred list mode filter so as to dynam- 
ically alter the filtering characteristics of the redirector 
program 12. 

[0042] After the redirector 12 has determined that a 
particular message should be redirected, and it has pre- 
pared that message for redirection, the software 1 2 then 
sends the message A to a secondary memory store lo- 
cated in the mobile device 24. In doing so, the redirector 
preferably repackages message A as an E-mail with an 
outer envelope B that contains the addressing informa- 
tion of the mobile device 24, although alternative repack- 
aging techniques and protocols could be used, such as 
a TCP/IP repackaging and delivery method (most com- 
monly used in the alternative server configuration shown 
in FIG. 2). The wireless gateway 20 requires this outer 
envelope information B in order to know where to send 
the redirected message A. Once the message (A in B) 
is received by the mobile device 24, the outer envelope 
B is removed, and the original message A is placed in 
the secondary memory store within the mobile device 24. 
By repackaging and removing the outer envelope in this 
manner, the present invention causes the mobile com- 
puter 24 to appear to be at the same physical location 
as the host system 10, thus creating a transparent sys- 
tem. 

[0043] In the case where message C is representative 
of an external message from a computer on the Internet 
18 to the host system 10A, and the host 10A has been 
configured to redirect messages of type C, then in a sim- 
ilar manner to message A, message C would be repack- 
aged with an outer envelope B and transmitted to the 
user's mobile device 24. In the case where message C 
is representative of a command message from the user's 
mobile device 24 to the host system 10A, the command 
message C is not redirected, but is acted upon by the 
host system 1 0A. 

[0044] If the redirected user data item is an E-mail mes- 
sage, as described above, the user at the mobile device 
24 sees the original subject, sender's address, destina- 
tion address, carbon copy and blind carbon copy infor- 
mation. When the user replies to this message, or when 
the user authors a new message, the software operating 
at the mobile device 24 adds a similar outer envelope to 
the reply message (or the new message) to cause the 
message to be routed first to the user's host system 1 0A, 
which then removes the outer envelope and redirects the 
message to the final destination, such as back to com- 
puter 26. In the preferred embodiment, this results in the 
outgoing redirected message from the user's host system 
1 0A being sent using the E-mail address of the host mail- 
box, rather than the address of the mobile device, so that 
it appears to the recipient of the message that the mes- 
sage originated from the user's desktop system 1 0A rath- 
er than the mobile data communication device 24. Any 



replies to the redirected message will then be sent to the 
desktop system 1 0A, which if it is still in redirector mode, 
will repackage the reply and re-send it to the user's mobile 
data device 24, as described above. 

5 [0045] FIG. 2 is an alternative system diagram showing 
the redirection of user data items from a network server 
host system 10B to the user's mobile data communica- 
tion device 24, where the redirector software 12 is oper- 
ating at the server 1 0B. This configuration is particularly 

^0 advantageous for use with message servers such as Mi- 
crosoft's TM Exchange Server, which is normally oper- 
ated so that all user messages are kept in one central 
location (or mailbox store) on the server instead of in a 
memory store within each user's desktop PC. This con- 

^5 figuration has the additional advantage of allowing a sin- 
gle system administrator to configure and keep track of 
all users having messages redirected. If the system in- 
cludes encryption keys, these too can be kept at one 
place for management and update purposes. 

20 [0046] In this alternative configuration, server 10B 
preferably maintains a user profile for each user's desk- 
top system 26, 28, including information such as whether 
a particular user can have data items redirected, which 
types of message and information to redirect, what 

25 events will trigger redirection, the address of the users' 
mobile data communication device 24, the type of mobile 
device, and the user's preferred list, if any. The event 
triggers are preferably detected at the user's desktop sys- 
tem 26, 28 and can be any of the internal, external or 

30 networked events listed above. The desktop systems 26, 
28 preferably detect these events and then transmit a 
message to the server host computer 1 0B via LAN 14 to 
initiate redirection. Although the user data items are pref- 
erably stored at the server host computer 1 0B in this em- 

35 bodiment, they could, alternatively, be stored at each us- 
er's desktop system 26, 28, which would then transmit 
them to the server computer 1 0B after an event has trig- 
gered redirection. 

[0047] As shown in FIG. 2, desktop system 26 gener- 
^0 ates a message A that is transmitted to and stored at the 
host system 1 0B, which is the network server operating 
the redirector program 1 2. The message A is for desktop 
system 28, but in this embodiment, user messages are 
stored at the network server 1 0B. When an event occurs 
^5 at desktop system 28, an event trigger is generated and 
transmitted to the network server 1 0B, which then deter- 
mines who the trigger is from, whether that desktop 28 
has redirection capabilities, and if so, the server 1 0B (op- 
erating the redirector program 12) uses the stored con- 
50 figuration information to redirect message A to the mobile 
computer 24 associated with the user of desktop system 
28. 

[0048] As described above with reference to FIG. 1 , 
message C could be either a command message from a 
55 user's mobile data communication device 24, or it could 
be a message from an external computer, such as a com- 
puter connected to the Internet 18. If the message C is 
from an Internet computer to the user's desktop system 
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28, and the user has redirection capabilities, then the 
server 10B detects the message C, repackages it using 
electronic envelope B, and redirects the repackaged 
message (C in B) to the user's mobile device 24. If the 
message C is a command message from the user's mo- 
bile device 24, then the server host computer 1 0B simply 
acts upon the command message using the redirector 
program 12. 

[0049] Turning now to FIG. 3, a block diagram is set 
forth that demonstrates the interaction of the redirector 
software 12 with additional components of the desktop 
host system 1 0A shown in FIG. 1 (i.e., the desktop PC) 
to enable more fully the pushing of information from the 
host system 10A to the user's mobile data communica- 
tion device 24. These additional components are illustra- 
tive of the type of event-generating systems that can be 
configured and used with the redirector software 1 2, and 
of the type of repackaging systems that can be used to 
interface with the mobile communication device 24 to 
make it appear transparent to the user. 
[0050] The desktop host system 10A is connected to 
LAN 14, and can send and receive data, messages, sig- 
nals, event triggers, etc., to and from other systems con- 
nected to the LAN 1 4. Through the LAN, the system 1 0A 
can also communicate with external networks 18, 22, 
such as the Internet or a wireless data network. In addi- 
tion to the standard hardware, operating system, and ap- 
plication programs associated with a typical microcom- 
puter or workstation, the desktop system 10A includes 
the redirector program 12, a TCP/IP sub-system 42, an 
E-mail subsystem 44, a primary data storage device 40, 
a screen saver sub-system 48, and a keyboard sub-sys- 
tem 46. The TCP/IP and E-mail subsystems 42, 44 are 
examples of repackaging systems that can be used to 
achieve the transparency of the present invention, and 
the screen saver and keyboard sub-systems 46, 48 are 
examples of event generating systems that can be con- 
figured to generate event messages or signals that trig- 
ger redirection of the user selected data items. 
[0051] The method steps carried out by the redirector 
program 12 are described in more detail in FIG. 4. The 
basic functions of this program are: (1 ) to configure and 
setup the user-defined event trigger points that will start 
redirection; (2) to configure the types of user data items 
for redirection and optionally configure a preferred list of 
senders whose messages are to be redirected; (3) to 
configure the type and capabilities of the user's mobile 
data communication device; (4) to receive messages and 
signals from the repackaging systems and the event gen- 
erating systems; and (5) to command and control the 
redirection of the user-selected data items to the mobile 
data communication 24 device via the repackaging sys- 
tems. Other functions not specifically enumerated could 
also be integrated into this program. 
[0052] The E-Mail sub-system 44 is the preferred link 
to repackaging the user-selected data items for trans- 
mission to the mobile data communication device 24, and 
preferably uses industry standard mail protocols, such 



as SMTP, POP, IMAP, MIME and RFC-822, to name but 
a few. The E-Mail sub-system 44 can receive messages 
A from external computers on the LAN 1 4, or can receive 
messages C from some external network such as the 

5 Internet 18 or a wireless data communication network 
22, and stores these messages in the primary data store 
40. Assuming that the redirector 12 has been triggered 
to redirect messages of this type, the redirector detects 
the presence of any new messages and instructs the E- 

^0 Mail system 44 to repackage the message by placing an 
outer wrapper B about the original message A (or C), and 
by providing the addressing information of the mobile da- 
ta communication device 24 on the outer wrapper B. As 
noted above, this outer wrapper B is removed by the mo- 

^5 bile device 24, and the original message A (or C) is then 
recovered, thus making the mobile device 24 appear to 
be the desktop system 10A. 

[0053] In addition, the E-Mail sub-system 44 receives 
messages back from the mobile device 24 having an out- 

20 erwrapperwiththe addressing information of the desktop 
system 1 0A, and strips this information away so that the 
message can be routed to the proper sender of the orig- 
inal message A (or C). The E-Mail sub-system also re- 
ceives command messages C from the mobile device 24 

25 that are directed to the desktop system 10A to trigger 
redirection or to carry out some other function. The func- 
tionality of the E-Mail sub-system 44 is controlled by the 
redirector program 12. 

[0054] The TCP/IP sub-system 42 is an alternative 
30 repackaging system. It includes all of the functionality of 
the E-Mail sub-system 44, but instead of repackaging the 
user-selected data items as standard E-mail messages, 
this system 42 repackages the data items using special- 
purpose TCP/IP packaging techniques. This type of spe- 
35 cial-purpose sub-system is useful in situations where se- 
curity and improved speed are important to the user. The 
provision of a special-purpose wrapper that can only be 
removed by special software on the mobile device 24 
provides added security, and by bypassing E-mail store 
^0 and forward systems, the speed of delivery of messages 
can be improved. 

[0055] As described previously, the present invention 
can be triggered to begin redirection upon detecting nu- 
merous external, internal and networked events, or trig- 

^5 ger points. Examples of external events include: receiv- 
ing a command message from the user's mobile data 
communication device 24 to begin redirection; receiving 
a similar message from some external computer; sensing 
that the user is no longer in the vicinity of the host system; 

50 or any other event that is external to the host system. 
Internal events could be a calendar alarm, screen saver 
activation, keyboard timeout, programmable timer, or 
any other user-defined event that is internal to the host 
system. Networked events are user-defined messages 

55 that are transmitted to the host system from another com- 
puter that is connected to the host system via a network 
to initiate redirection. Sensing that the user is not in the 
vicinity of the host system may be achieved by (1) an 
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electronic camera subsystem that detects whether the 
user has left a predetermined area; (2) heat sensors that 
detects the lack of the user's heat presence; (3) motion 
detector that monitors if the user has not created any 
motion for a predetermined period of time; (4) disconnec- 
tion or detachment of the mobile device from a serial 
cradle connected to the desktop computer or host system 
(prior to the mobile device user departing, user would 
remove the device from a serial cradle that permits a 
serial synchronization of the data on the mobile with that 
in the host system); and, (5) short-range RF detachment 
to the mobile device worn by the user as he departs the 
vicinity of the host system. 

[0056] The screen saver and keyboard sub-systems 
46, 48 are examples of systems that are capable of gen- 
erating internal events. Functionally, the redirector pro- 
gram 12 provides the user with the ability to configure 
the screen saver and keyboard systems so that under 
certain conditions an event trigger will be generated that 
can be detected by the redirector 12 to start the redirec- 
tion process. For example, the screen saver system can 
be configured so that when the screen saver is activated 
after, for example, 1 0 minutes of inactivity on the desktop 
system, an event trigger is transmitted to the redirector 
12, which starts redirecting the previously selected user 
data items. In a similar manner, the keyboard sub-system 
can be configured to generate event triggers when no 
key has been depressed for a particular period of time, 
thus indicating that redirection should commence. These 
are just two examples of the numerous application pro- 
grams and hardware systems internal to the host system 
1 0A that can be used to generate internal event triggers. 
[0057] FIGs. 4 and 5, set forth, respectively, flowcharts 
showing the steps carried out by the redirector software 
12 operating at the desktop host system 10A, and the 
steps carried out by the mobile data communication de- 
vice 24 in order to interface with the host system. Turning 
first to FIG. 4, at step 50, the redirector program 12 is 
started and initially configured. The initial configuration 
of the redirector 12 includes: (1) defining the event trig- 
gers that the user has determined will trigger redirection; 
(2) selecting the user data items for redirection; (3) se- 
lecting the repackaging sub-system, either standard E- 
Mail, orspecial-purpose technique; (4) selecting the type 
of data communication device, indicating whether and 
what type of attachments the device is capable of receiv- 
ing and processing, and inputting the address of the mo- 
bile device 24; and (5) configuring the preferred list of 
user selected senders whose messages are to be redi- 
rected. 

[0058] FIG. 4 sets forth the basic steps of the redirector 
program 12 assuming it is operating at a desktop host 
system 10A, such as shown in FIG. 1. If the redirector 
1 2 is operating at a network server host system 1 0B, as 
shown in FIG. 2, then additional configuration steps may 
be necessary to enable redirection for a particular desk- 
top system 26, 28 connected to the server 1 0B, including: 
(1) setting up a profile for the desktop system 26, 28 



indicating its address, events that will trigger redirection, 
and the data items that are to be redirected upon detect- 
ing an event; (2) maintaining a storage area at the server 
10B for the data items; and (3) storing the type of data 

5 communication device 24 to which the desktop system's 
data items are to be redirected, whether and what type 
of attachments the device 24 is capable of receiving and 
processing, and the address of the mobile device 24. 
[0059] Once the redirector program is configured 50, 

^0 the trigger points (or event triggers) are enabled at step 
52. The program 1 2 then waits 56 for messages and sig- 
nals 54 to begin the redirection process. A message could 
be an E-Mail message or some other user data item that 
may have been selected for redirection, and a signal 

^5 could be a trigger signal, or could be some other type of 
signal that has not been configured as an event trigger. 
When a message or signal is detected, the program de- 
termines 58 whether it is one of the trigger events that 
has been configured by the user to signal redirection. If 

20 so, then at step 60 a trigger flag is set, indicating that 
subsequently received user data items (in the form of 
messages) that have been selected for redirection should 
be pushed to the user's mobile data communication de- 
vice 24. 

25 [0060] If the message or signal 54 is not a trigger event, 
the program then determines at steps 62, 68 and 66 
whether the message is, respectively, a system alarm 
62, an E-Mail message 64, or some other type of infor- 
mation that has been selected for redirection. If the mes- 

30 sage or signal is none of these three items, then control 
returns to step 56, where the redirector waits for addi- 
tional messages 54 to act upon. If, however the message 
is one of these three types of information, then the pro- 
gram 12 determines, at step 68, whether the trigger flag 

35 has been set, indicating that the user wants these items 
redirected to the mobile device 24. If the trigger flag is 
set, then at step 70, the redirector 1 2 causes the repack- 
aging system (E-Mail or TCP/IP) to add the outer enve- 
lope to the user data item, and at step 72 the repackaged 

^0 data item is then redirected to the user's mobile data 
communication device 24 via LAN 1 4, WAN 1 8, wireless 
gateway 20 and wireless network 22. Control then returns 
to step 56 where the program waits for additional mes- 
sages and signals to act upon. 

45 [0061] Although not shown explicitly in FIG. 4, after 
step 68 the program could, if operating in the preferred 
list mode, determine whether the sender of a particular 
data item is on the preferred list, and if not, then the pro- 
gram would skip over steps 70 and 72 and proceed di- 

50 rectly back to step 56. If the sender is on the preferred 
list, then control returns to steps 70 and 72 for repack- 
aging and transmission of the message from the pre- 
ferred list sender to the mobile device 24. 
[0062] FIG. 5 sets forth the method steps carried out 

55 by the user's mobile data communication device 24 in 
order to interface to the redirector program 12 of the 
present invention. At step 80, the mobile software is start- 
ed and the mobile device 24 is configured to operate with 
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the system of the present invention, including, for exam- 
ple, storing the address of the user's desktop system 1 0A. 
[0063] At step 82, the mobile device waits for messag- 
es and signals 84 to be generated or received. Assuming 
that the redirector software 12 operating at the user's 
desktop system 10A is configured to redirect upon re- 
ceiving a message from the user's mobile device 24, then 
at step 86 the user can decide to generate a command 
message that will start redirection at the host system 1 0A. 
If the user does so, then at step 88 the redirection mes- 
sage is composed and sent to the desktop system 10A 
via the wireless network 22, through the wireless gateway 
20, via the Internet 1 8 to the LAN 1 4, and is finally routed 
to the desktop machine 10A. 

[0064] In this situation where the mobile device 24 is 
sending a message directly to the desktop system 10A, 
no outer wrapper is added to the message (such as mes- 
sage C in FIGs. 1 and 2). In addition to the redirection 
signal, the mobile device 24 could transmit any number 
of other commands to control the operation of the host 
system 10A, and in particular the redirector program 12. 
For example, the mobile 24 could transmit a command 
to put the host system 10A into the preferred list mode 
state, and then could transmit additional commands to 
add or subtract certain senders or certain message char- 
acteristics from the preferred list. In this manner, the mo- 
bile device 24 can dynamically limit the amount of infor- 
mation being redirected to it by altering the preferred list. 
[0065] Other example commands include: (1) a mes- 
sage to change the configuration of the host system 1 0A 
to enable the mobile device 24 to receive and process 
certain attachments; and (2) a message to instruct the 
host system 10A to redirect an entire data item to the 
mobile device 24 in the situation where only a portion of 
a particular data item has been previously redirected. 
[0066] Turning back to FIG. 5, if the user signal or mes- 
sage is not a direct message to the desktop system 1 0A 
to begin redirection (or some other command), then con- 
trol is passed to step 90, which determines if a message 
has been received. If a message is received by the mo- 
bile, and it is a message from the user's desktop 1 0A, as 
determined at step 92, then at step 94 a desktop redirec- 
tion flag is set "on" for this message, and control passes 
to step 96 where the outer envelope is removed. Follow- 
ing step 96, or in the situation where the message is not 
from the user's desktop 10A, as determined at step 92, 
control passes to step 98, which displays the message 
for the user on the mobile device's display. The mobile 
unit 24 then returns to step 82 and waits for additional 
messages or signals. 

[0067] If the mobile device 24 determines that a mes- 
sage has not been received at step 90, then control pass- 
es to step 1 00, where the mobile 24 determines whether 
there is a message to send. If not, then the mobile unit 
returns to step 82 and waits for additional messages or 
signals. If there is at least one message to send, then at 
step 102 the mobile 24 determines whether it is a reply 
message to a message that was received by the mobile 



unit. If the message to send is a reply message, then at 
step 1 08, the mobile 24 determines whether the desktop 
redirection flag is on for this message. If the redirection 
flag is not on, then at step 1 06 the reply message is simply 

5 transmitted from the mobile device 24 to the destination 
address via the wireless network 22. If, however, the re- 
direction flag is on, then at step 1 10 the reply message 
is repackaged with the outer envelope having the ad- 
dressing information of the user's desktop system 10A, 

^0 and the repackaged message is then transmitted to the 
desktop system 10A at step 106. As described above, 
the redirector program 12 executing at the desktop sys- 
tem then strips the outer envelope and routes the reply 
message to the appropriate destination address using 

^5 the address of the desktop system 10A as the "from" 
field, so that to the recipient of the redirected message, 
it appears as though it originated from the user's desktop 
system rather than the mobile data communication de- 
vice. 

20 [0068] If, at step 102, the mobile 24 determines that 
the message is not a reply message, but an original mes- 
sage, then control passes to step 1 04, where the mobile 
24 determines if the user is using the redirector software 
12 at the desktop system 10A, by checking the mobile 

25 unit's configuration. If the user is not using the redirector 
software 12, then the message is simply transmitted to 
the destination address at step 1 06. If, however, the mo- 
bile determines that the user is using the redirector soft- 
ware 1 2 at the desktop system 1 0A, then control passes 

30 to step 1 10, where the outer envelope is added to the 
message. The repackaged original message is then 
transmitted to the desktop system 1 0A at step 1 06, which, 
as described previously, strips the outer envelope and 
routes the message to the correct destination. Following 

35 transmission of the message at step 106, control of the 
mobile 24 returns to step 82 and waits for additional mes- 
sages or signals. 

[0069] Now with reference to FIGs. 6-8, there will be 
described an alternative two-host Internet-based system 

^0 using many of the features of the system described in 
the network-based host system 1 0B configuration shown 
in FIG. 2. In the system shown in FIGs. 6-8, however, 
instead of a single host system 1 0B for storing the user's 
messages and for operating the redirector program 12, 

^5 there are two hosts, a messaging host 230, where the 
user's data items are stored, and a wireless redirector 
host system 240, where a wireless redirector program 
242 operates. These two host system are preferably cou- 
pled together via the Internet21 8. The wireless redirector 

50 program 242 is similar in many respects to the redirector 
program 12 described above, but is configured for com- 
municating with a wireless gateway 260 coupled to a 
wireless data network 222. 

[0070] With reference to FIG. 6, there is shown an ex- 
55 ample system diagram showing the redirection of user 
data items, such as message A, from user A's desktop 
PC 204 to user B's mobile data communication device 
220, or alternatively, message B from user B's mobile 
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communication device 220 to user A. In tiiis example, 
the messaging host system 230 maintains and stores 
data items received from the Internet 218 for user B in a 
message Inbox. In this particular system example, the 
messaging host system 230 is preferably an ISP or an 
ASP that provides connectivity to the Internet 218 for a 
plurality of users, including user B. In another embodi- 
ment of the present invention, the messaging host 230 
may be a web-based E-mail hosting service such as MSN 
Hotmail TM or a variety of other known web-based E- 
mail hosting systems. In another embodiment of the in- 
vention, the E-mail hosting service supplies a strictly 
wireless solution. 

[0071] In this embodiment of the invention, the mes- 
saging host system 230 is configured so as to forward a 
copy of all incoming data items destined for user B's Inbox 
to a second host referred to herein as a wireless redirec- 
tor host system 240. The wireless redirector host system 
240 includes the wireless redirector program 242. Ad- 
vantageously, data items destined for a user of the mes- 
saging host system 230 having a mobile communication 
device are continuously "pushed" to the wireless redirec- 
tor host system 240 as they arrive at the messaging host 
system 230. Upon arrival at the redirector host system 
240, a wireless redirector software program 242 operat- 
ing at the system 240 determines whether such data 
items are user-selected data items to be pushed via a 
wireless network 222 to the user's mobile communica- 
tions device 220. In this manner, user-selected data 
items are advantageously pushed out to the mobile com- 
munication device 220 contemporaneously as they arrive 
to the messaging host system 230 so that the user need 
not be concerned about delays in receiving user-selected 
data items on the user's mobile communication device 
220. 

[0072] The wireless redirector host system 240 acts 
primarily as a bridge for data items received from the 
Internet 21 8 and those specific data items that have been 
user pre-selected to be redirected (via filtering rules to 
be described later) to the user's mobile communications 
device via the wireless network 222. These filtering rules 
are similar to the "preferred list mode" operation de- 
scribed above with respectto the systems shown in FIGs. 
1 and 2. The wireless redirector host system 240 may 
thus be considered a "virtual" service provider, providing 
redirection service for an external service such as E-mail 
services hosted by messaging host system 230. 
[0073] Message A in FIG. 6 represents a data item, 
such as an E-mail message, sent from user A's desktop 
PC 204 having user B as the recipient. Because user B 
has a mailbox on the messaging host system 230, the 
message A will be directed via the Internet to the host 
system 230. The flow of this message A is shown in a 
single solid line 206. 

[0074] Message B in FIG. 6 represents an external 
message created on and sent from user B's mobile data 
communications device 220 having user A as a recipient. 
Alternatively, message B also may represent acommand 



message from user B's mobile data communication de- 
vice 220 to the wireless redirector host system 240. The 
flow of this message B is shown in a single dashed line 
258. 

5 [0075] As shown in more detail in FIG. 7, the wireless 
redirector host system 240 preferably includes, along 
with the typical hardware and software associated with 
an Internet gateway, the wireless redirector software 242 
which includesa mail handler, preferably a sendmaildae- 

^0 mon (not shown), a local delivery agent (not shown), a 
plurality of wireless mail stores 248 (preferably one for 
each mobile user such as user B), a filter database 250, 
and a mobile user profile database 254. 
[0076] Also as described in more detail in FIG. 7, the 

^5 messaging host system 230 is preferably a Unix system 
that includes a sendmail daemon 232, a ".forward" file 
238, and a memory storage area 236 for storing the data 
items of certain users that are having messages redirect- 
ed to their mobile data communication devices 220. 

20 [0077] Referring now to FIGs. 6 and 7, the two-host 
system invention will first be described by way of example 
with reference to message A. FIG. 6 shows an E-mail 
message A being communicated over the Internet 218 
from user A's desktop PC 204 destined for user B's Inbox, 

25 which is located on the messaging host system 230. 
Once the message A reaches a mail handler 232 at the 
messaging host 230, such as a sendmail daemon 232 in 
a preferred embodiment, it can be detected and acted 
upon by this system 230. 

30 [0078] One of the objectives of the present invention 
is to be as non-obtrusive as possible to the messaging 
host system 230 so as to make the invention simple to 
install and implement for ISPs and ASPs. The messaging 
host system 230 may be configured in many ways to 

35 detect such messages. Since not all users of an ISP or 
ASP will have a mobile communication device 220, it is 
preferable that the system 230 includes a unique user 
file that is accessed and modified upon the arrival of any 
new message. The preferred method of detecting new 

^0 messages, such as message A, is using Unix's ".forward" 
file 238. Preferably, the redirection (or forwarding) of data 
items is accomplished by modifying the ".forward" file 
238 typically found in the user's root directory at the mes- 
saging host system 230, such as an ISP. The ".forward" 

^5 file is a simple ASCII text file comprising at least a list of 
one or more E-mail addresses (with some control infor- 
mation). The sendmail daemon 232 checks for the exist- 
ence of this file 238, and uses its content to forward data 
items to the appropriate locations. Other methods of de- 

50 tecting and forwarding new data items destined for a user 
having a mobile communications device 220 could also 
be used and such other methods are well within the scope 
of the present invention. 

[0079] An example of the content of the ".forward" file 
55 modified for the present invention is: \username@isp.net 
username(a)wirelessredi rectorhost.net 
[0080] In this example, the sendmail daemon 232 
would redirectacopy of any incoming data items to those 
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two addresses, namely "username(a)isp.net" and "user- 
name(a)wirelessredirectorhost.net." In the latter case, 
the data item would, preferably, be sent via the Internet 
to the wireless redirector host system 240 for further han- 
dling by the wireless redirector software program 242. 
The former address requires the sendmail daemon 232 
to send the data item to user B's Inbox of the local data 
item store 236. User B may access his data items in the 
Inbox as he traditionally does - by, for example, POP3 or 
IMAP. In this manner, the forwarding activity is transpar- 
ent to the user. The user B when viewing the inbox data 
items at his desktop PC 202 would know of the redirecting 
activity only by the message text that may be added to 
the messages as they are redirected by the mail handler. 
[0081 ] Assuming that the redirector program 242 is ac- 
tivated at the wireless redirector host system 240, and 
has been configured by the user to replicate certain user 
data items (such as message A) to the mobile commu- 
nications device 220, when the message A is received 
at the wireless redirector host system 240, the redirector 
program 242 detects message A's presence and pre- 
pares the message for a second redirection to the mobile 
device 220. In preparing the message for the second 
redirection, the redirector program 242 may compress 
the original message A, it may compress the message 
header, or it may encrypt the entire message A to create 
a secure link to the mobile device 220. However, before 
the redirector program 242 compresses or encrypts the 
message A and redirects it to the mobile device 220, it 
examines stored user information and filtering rules that 
are associated with the recipient, user B, so as to deter- 
mine how the message A should be handled. 

A) Filtering 

[0082] Preferably, before the redirector program 242 
begins preparing the message A for redirection, the re- 
director 242 examines the data item with respect to rules 
contained on a user B configurable filtering agent 250 
(see, FIG. 7) which essentially is a database of rules that 
are to be applied for each user's incoming data items. 
The filtering agent 250 is preferably accessible by the 
user via the World Wide Web in a filter web page 252. 
The filter web page 252 allows the user, if the user so 
desires, to access and apply a plurality of filtering rules 
or any combination thereof that are to be applied to all 
incoming data items destined for that user. Preferably, 
in addition to filtering rules, web page 252 allows user B 
to switch between an active or a de-active state for the 
redirection of user B's incoming messages. This switch- 
ing feature is particularly useful during instances where 
user B is at his desktop PC 202 and accessing his inbox 
of the local store 236 and desires that the redirection of 
incoming mail to his mobile device 220 is temporarily 
deactivated. The following criteria are exemplary of the 
types of filtering rules that may be available to the user: 
sender(s); how addressed (To, CC, BCC); subject key- 
word(s); message keyword(s); and importance (high. 



low, normal). 

[0083] In any event, the filtering agent250 is preferably 
hosted by the wireless redirector host system 240, but 
may be hosted by alternative host systems, including the 

5 messaging host system 230 so long as the redirector 
program 242 has access to the most current set of rules 
and can make a determination whether any particular 
data item has satisfied all user-defined filtering rules. Al- 
ternatively, the filtering agent 250 may be combined with 

^0 the user profile database 254. Data items that do not 
clear the filtering rules are marked as "handled" by the 
redirector program 242 in the wireless data item store 
248, and are not further handled by the redirector 242. 

15 B) User Profile 

[0084] Also accessible by the redirector program 242 
is the address of the user's mobile data communication 
device 220, the user's SMTP address, the type of device 
20 220, and whether the device 220 can accept certain types 
of attachments, such as word processing or voice attach- 
ments. This information is preferably maintained in a user 
profile database 254 (see, FIG. 7). Such user information 
may be preferably created, updated and removed via a 
25 web-based user administration page 256. Web page 256 
is preferably access-restricted to the system administra- 
tor of the messaging host system 230 who may from time 
to time add new users to the redirection service. In ad- 
dition to the above user information, the system admin- 
30 istrator preferably has a switch control feature on the web 
page 256 to deactivate or activate redirection of the data 
items from the host system 230 that takes precedence 
over the user's selection on web page 252. This, advan- 
tageously, allows the system administer to maintain con- 
35 trol over the value-added service described herein. 

[0085] If the user's type of mobile device 220 cannot 
accept certain types of attachments, then the redirector 
program 242 can be programmed to route the attach- 
ments to a fax or voice number where the user is located. 
^0 The user may provide such information details to the re- 
director program 242 via a return message. 

C) Redirection 

45 [0086] After the redirector program 242 has deter- 
mined that a particular message should be redirected, 
and it has prepared the message for redirection, the soft- 
ware 242 preferably converts the message from MIME 
to CMIME (MIME is a standard Internet mail format, and 
50 CMIME is a compressed version of MIME), and then 
sends the message A to a memory store located in the 
mobile communications device 220 viathe wireless gate- 
way 250 and the wireless data network 222. In doing so, 
the redirector program 242 preferably packages mes- 
55 sage A as a message with an outer envelope A' that 
contains the addressing information of the mobile device 
220. In the preferred embodiment, the outer envelope is 
GME. The wireless gateway 260 requires this outer en- 
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velope information A' in order to know wliere to send tine 
redirected message A. Once tine repackaged message 
(message A in A') is received by tine mobile device 220, 
tine outer envelope A' is removed, and the original mes- 
sage A is placed in the second memory store within the 
mobile device 220. By removing the outer envelope A' 
and presenting to the user of mobile device 220 message 
A , the present invention causes the mobile device 220 
to appear to be at the same physical location as the mes- 
saging host system 230, or PC 202 in a transparent, 
seamlessly integrated Internet account hosted by mes- 
saging host system 230. 

D) Outgoing Data Item From Mobile 

[0087] If the redirected user data item is an E-mail mes- 
sage, as described above, then the user at the mobile 
device 220 sees the original subject line, sender's ad- 
dress, destination address, and carbon copy address. 
Preferably and desirably, the redirection of the E-mail 
message A is transparent to the mobile communication 
device user. When the user, at the mobile device 220, 
replies to message A, or when the user authors a new 
message (a reply or a new message collectively referred 
to as "message B"), the software operating at the mobile 
device 220 adds a similar outer envelope (message B') 
to the reply message B (or the new message B) to cause 
message B to be routed to the wireless redirector host 
system 240 via the wireless network 222, which then re- 
moves the outer envelope B', repackages message B as 
message B", and redirects message B" to the final des- 
tination, such as user A's PC desktop 204. 
[0088] The general flow of such transmission is shown 
as a dotted line in FIG. 6. In this embodiment of the in- 
vention, the removal of the outer envelope B' and repack- 
aging of message B into envelope B" results in the out- 
going redirected message B" from the wireless redirector 
host system 240 being sent using the E-mail address of 
the user's mailbox on messaging host system 230, rather 
than the address of the mobile device 220, so that it ap- 
pears to the recipient of the message B" that the mes- 
sage originated from the user's desktop system 202 or 
from the messaging host system 230 itself (as would be 
the case of a web-based E-mail hosting system) rather 
than the mobile data communication device 220. This is 
accomplished by the redirector modifying 
the "from" and "reply to" identifiers associated with the 
message B to now have the SMTP address of user B's 
messaging host system 230 E-mail account. Advanta- 
geously, any replies to the message B" will then be sent 
to user B's Inbox on messaging host system 230, which, 
if it is still in redirector mode, will repackage the reply and 
resend it to user B's mobile data device 220, as described 
above. 

[0089] In this embodiment, a copy of message B (la- 
belled B'") is redirected to user B's Inbox at messaging 
host system 230 for retrieval and access by user B at 
some latertime -for recording keeping purposes. In doing 



so, the redirector program 242 preferably repackages 
message B as message B'" so as to now have modified 
addressing information. In this preferred instance, the 
modified addressing information would include changing 

5 the "from" header information to read something to the 
following effect: "Sent from mobile communications de- 
vice to recipient" where 'recipient' would be the recipient's 
address of message B". This message B"' is fonwarded, 
preferably via the Internet 218, to the messaging host 

10 system 230. 

[0090] As shown in FIG. 7, the messaging host system 
is preferably configured as an ISP. Here, the ISP system 
230 includes a sendmail daemon 232, which forwards 
the copy B"' to the local data item store 236 by a local 

^5 delivery agent (not shown). Further, user B may prefer- 
ably configure his local inbox of data items at the desktop 
202 to store such copy messages in a specific inbox for 
mobile data communications device data items. Of 
course in the illustrative example of messaging host sys- 

20 tem 230 configured to redirect all incoming data items to 
wireless redirector host system 240, sendmail daemon 
232 would detect a new message and the ".forward" file 
238 would again be accessed and the forwarding infor- 
mation therein acted upon. Consequently, message B"' 

25 is redirected (not shown) to redirector host system 240. 
At the redirector host system 240, the redirector 242 is 
preferably programmed to detect that such a message 
B'" is a redirection of message B'" sent therefrom. As 
such, the redirector 242 ignores this re-redirected mes- 

30 sage. Alternatively, the mail handler 232 at the messag- 
ing host system 230 is configured to detect such mes- 
sages and to not redirect such messages. 
[0091 ] It is to be understood that a plurality of messag- 
ing host systems 230 may use a single redirector host 

35 system 240 for redirection of users' E-mail messages. 
Further still, a single redirector program 242 may be used 
to service the plurality of messaging host systems 230. 
[0092] Turning now to FIG. 8, a flow chart is set forth 
showing the steps carried out by the redirector program 

^0 242 operating at the redirector host system 240 shown 
in FIGs. 6 and7. The basicsteps carried outby the mobile 
communications device 220 in order to interface with the 
redirector host system 240 may be accomplished by sub- 
stantially the same steps as shown in FIG. 5, although 

^5 modified for this two-host aspect of the invention. 

[0093] The flow chart in FIG. 8 assumes that the redi- 
rector program 242 has been activated and is operating. 
Additional configuration steps will be necessary to enable 
redirection services for a new messaging host system 

50 230. These additional configuration steps include: (1 ) set- 
ting up a profile for the new messaging host system 230 
indicating its address, etc. (2) setting up individual user 
profiles, (3) initiating default filtering rules for incoming 
messages from the messaging host system for the users, 

55 and (4) making available both the filtering rule 252 and 
user profile 256 web pages. The flow chart also assumes 
the necessary steps have been undertaken to configure 
the messaging host system 230 to forward a copy of all 
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incoming messages to tine redirector liost system 240 
(i.e., tine Unix ".forward" file lias been properly config- 
ured). 

[0094] Once the messaging host system 230 is con- 
figured 268 and the redirector program 242 is configured 
270, the program 242 then waits for data items at step 
272. As discussed earlier, data items need not be limited 
to E-mail messages but may also include signals that are 
representative of user profile changes or filtering rule 
changes. 

[0095] When a data item is detected, the program de- 
termines at steps 274, 276 and 278 whether the data 
item is, respectively, a user profile change 274, a mes- 
sage from the Internet 276, or a message from the wire- 
less mobile device 278. If the data item is a user profile 
change, then the appropriate user profile change is made 
at 280. Control then returns to step 272 where the pro- 
gram waits for additional data items. If the data item is a 
message from the Internet, then the appropriate user pro- 
file information is checked and applied at step 290. The 
program then checks if the filter rules have changed at 
step 292. If so, the filter rules are reloaded. Next, the filter 
rules are applied at step 296. If the message does not 
clear all applicable redirection filter rules at step 297, the 
preparation and redirection steps 298 and 300, respec- 
tively, are skipped. The message is thus ignored and 
control is returned to the redirector program 242 at step 
272. Assuming, however, that the message (or at least 
a portion thereof) is to be redirected, then the message 
is prepared for redirection at step 298. In the preparation 
step 298, the redirector program 242 adds the outer en- 
velope to the message for wireless transmission. At step 
300, the repackaged message is then forwarded to the 
user's mobile device 220 via LAN 258, wireless gateway 
260 and wireless network 222. Control then returns to 
step 272 where the program waits for additional data 
items to act upon. 

[0096] If, at step 278, there is a determination that the 
data item is a message from the mobile device 220, then 
the message is prepared for Internet redirection at step 
284. Preparation would preferably include changing the 
"from" and "reply to" fields of the message to replicate 
the address of the user's SMTP address at the messag- 
ing host system 230 - the resulting message referred to 
as message B" in FIG. 6. Also, the preparation step may 
include making asecondcopyof the message, such mes- 
sage referred to as message B"' in FIG. 6. In this second 
copy, the "from" field is changed to, preferably, "Sent 
from the mobile device to Recipient" where 'Recipient' is 
the SMTP address of the recipient of message B". At 
step 286, previous messages or attachments are ap- 
pended. At step 288, one message is forwarded to the 
recipient (message B") and the copy of the message 
(message B"') is forwarded to the user's messaging host 
system 230 destined for the user's local data item store 
236 for record keeping purposes. Control then returns to 
step 272, where the program waits for additional data 
items to act upon. If, at step 278, there is a determination 



that the data item is not a message from the wireless 
device, other functions may be performed by the redirec- 
tor program 242 if so programmed to do so. For instance, 
the message could be a command message such as 
5 described earlier in this application where additional text 
of the E-mail message may be transmitted to the mobile 
device 220. 

[0097] Although not explicitly shown in the flowchart, 
if at step 276 there is a determination that the message 

^0 is from the Internet, then the redirector program 242 
would check whether the message is a re-redirected 
message from the messaging host system 230. If so, all- 
subsequent steps are skipped (the message is ignored) 
and control is returned to step 272. In this manner, re- 

^5 redirected messages are not redirected to the mobile de- 
vice 220. Alternatively implemented, this determination 
could be undertaken at step 296 as part of the default 
filtering rules. It is to be understood that the user profile 
and filtering rules could alternatively be combined togeth- 

20 er, thus eliminating a step(s). This is, of course, well within 
the scope of the present invention. 
[0098] Although notshown, the additional step of main- 
taining the wireless data item store 248 is another step 
(s) that the redirector would preferably manage. At a pre- 

25 determined storage threshold either by date or size, each 
user's earliest stored data item would be deleted to make 
room for newer incoming data items. 
[0099] Referring now to FIGs. 9-12, there will be de- 
scribed an alternative multi-host Internet-based system 

30 using many of the features of the system described in 
the two-host Internet-based system configuration shown 
in FIGs. 6-8. In the redirector system 200 shown in FIGs. 
9-1 2, instead of a two-host system for storing the mobile 
device user's messages and for operating the redirector 

35 program 1 2, there is a multiplicity of hosts, with each one 
performing part of the distributed tasks of redirector pro- 
gram 12. The redirector system 200 is capable of han- 
dling a multiplicity of messaging hosts 230, where the 
mobile device user's data items are stored. Each mes- 

^0 saging host 230 may correspond to an ISP or an ASP 
with its own setof users, a subset of which are configured 
to have their E-mail fonwarded for wireless redirection to 
their respective mobile devices 220 via the mail handler 
232 according to the forward file 238, as described above 

^5 with reference to FIGs. 6-8. However, in the multi-host 
Internet-based system 200, instead of using a single 
wireless redirector hostsystem 240, and asingle wireless 
redirector program 242, the redirector program has been 
embodied into a multiplicity of redirector send agents 245 

50 and redirector receive agents 249, a pair of which can 
be hosted on separate redirector agent host servers 243. 
This multi-host configuration provides the significant ad- 
vantage of allowing the redirector system 200 to be scale- 
able and easily configured to support multiple ISPs 

55 and/or ASPs each having multiple sites, with each site 
having an associated Internet domain name. A single 
redirector agent host server can support several pairs of 
send and receive agents, each pair of agents serving an 
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ISP or ASP site. The mapping of redirector host servers 
to sites and the configuration of redirector agents is ac- 
complished via the web-based administration 257 of the 
administration information database 259. Although mul- 
tiple host arrangements are described hereinafter prima- 
rily in the context of an illustrative example of ISPs, it is 
to be understood that similar arrangements may also be 
applied to ASPs. 

[0100] SMTP is the only system interface that a mes- 
saging host such as an ISP needs to support in order to 
interface with redirector system 200 during normal oper- 
ation. Advantageously, a web browser is the only user 
interface 253 an ISP needs to support in order to config- 
ure the redirector system 200. Similarly, a web browser 
is the user interface 256 a user needs to support in order 
to configure the redirector system 200. 
[01 01 ] By using a hierarchy of stored configuration in- 
formation in the databases 259, 255, 254 and 250, the 
web interfaces 257, 256, 253 and 252 allow a plurality of 
system 200 administrative accounts to manage a plurality 
of site manager accounts, which in turn manage a plu- 
rality of site dependent mobile device user accounts. At 
each level down, the web-based interfaces provide ac- 
cess to only those elements of the databases for which 
the account has authority. 

[01 02] Administrative accounts have authority to man- 
age site manager accounts, redirector agent host server 
configuration records, and set site configuration default 
values. Site manager accounts have authority to override 
certain site configuration records, manage user ac- 
counts, and set user configuration default values. User 
accounts have authority to override certain user records. 
The next three paragraphs illustrate the type of informa- 
tion and authority associated with the three accounts de- 
scribed above. 

[0103] The access to administrative operations is lim- 
ited to system 200 operators who have an administrative 
account comprising an administrator name and pass- 
word useable on web-based administration page 257 in 
order to gain access to the administration database 259. 
An administratorof system 200 manages records forcon- 
figuring redirector agent host servers, and manages ac- 
counts for site managers, which access the site informa- 
tion database 255 via web-based site information page 
253. 

[0104] Site managers represent ISP hosted Internet 
domains and manage site information records for further 
configuring redirector agents, and manage accounts for 
mobile device 220 users who wish to use system 200 for 
redirecting their data items. The site information record 
includes such items as, for example, an optional Internet 
domain name and a default tag line to be appended at 
the end of every E-mail. 

[0105] A site mobile user, when provided with an ac- 
count by a site manager, can access the user information 
database 254 via web based user administration page 
256, in order to update those fields of their user informa- 
tion record for which they have authority. For instance. 



a user might wish to override the default site wide tag 
line stored in the site info record corresponding to his 
site, thereby enabling the tag-line customization feature. 
The user might also wish to override the default domain 
5 name based E-mail address provided by his site manager 
by specifying his single SMTP address, thereby enabling 
domain-massaging feature. 

[01 06] As used in this description, the phrase domain- 
massaging is defined as the feature which allows an ISP 

^0 or a site manager to customize the "sent from" and "reply 
to" addresses for messages generated at a mobile device 
by a mobile device user. This new feature functionality 
allows an ISP to effectively offer "single E-mail address" 
functionality to their mobile device users that have an E- 

^5 mail address, which is different from the ISP's default 
domain address. For example, a first mobile device user 
with "single E-mail address" user@userscompany.com, 
can go through ISP's forwarding service over domain 
isp.com where the user has traditionally the E-mail ad- 

20 dress user(a)isp.com. In one embodiment, the ISP can 
activate the domain-massaging feature of the redirector 
receive agent to replace user@isp.com with user@user- 
company.com in the "sent from" and "reply to" fields for 
E-mail messages generated (i.e., originally created, or 

25 replied from) at the mobile device user's mobile device, 
thereby (1 ) allowing the user to advantageously use only 
one E-mail address when creating messages at either 
his mobile device or at his traditional non-wireless E-mail 
generation means and (2) making it appear as though 

30 the user has a "single E-mail address", user@user com- 
pany. com. 

[0107] Closely related to the domain-massaging fea- 
ture is the tag line customization feature, which as used 
herein, is defined as the feature which allows an ISP to 

35 provide a default tag line to be appended to all of its mo- 
bile device users' messages generated at and sent from 
the mobile device, as well as the user's ability to custom- 
ize the tag line. Preferably, the tag line is appended to 
the messages after arrival from the wireless networksuch 

^0 as at the redirector system, but prior to transmission to 
the intended recipient. This advantageously permits 
over-the-air bandwidth transmission savings. For in- 
stance, an ISP may wish to have a default tag line which 
reads, for instance, "This mobile message brought to you 

^5 by http://www.isp.com/" thereby creating a sales oppor- 
tunity at every E-mail message sent by every one of their 
new mobile users. A mobile user can then customize the 
tag line by, for instance, including a signature such as: 
[0108] With regards, 

50 User Name 

tel.: xxx.yyy.zzz wwww 
e-mail: user@isp.com 

55 

[0109] FIG. 1 1 illustrates the steps taken by a redirec- 
tor receive agent 249 in order to accomplish the two fea- 
tures described in the previous paragraphs, namely do- 
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main-massaging and tag-line customization. In this ex- 
ample, the redirector receive agent can be considered 
to accomplish steps 284, 286, and 288 of the redirector 
program 242 illustrated in FIG. 8, as well as the additional 
domain-massaging and tag line customization features 
to be described. 

[01 10] At step 300, the redirector receive agent is no- 
tified that a wireless message is available for redirection 
in wireless data item store 248. This step consists of get- 
ting the message data 31 0 comprised of a content type, 
a stream, and a user id. This example assumes that the 
message type is an E-mail message originated from the 
user's mobile device 220. At the next step 320, the user 
id 312 obtained in step 300 is used as a key to obtain a 
user record 330 from the user information database 254. 
At step 340, site id 332 obtained in step 320 is used as 
a key to obtain site information record 350 from the site 
information database 255. Step 400, comprised of steps 
410, 420, 430 and 440, sets the user's E-mail address 
upon the condition of the site information record 350 hav- 
ing a blank domain name. If the domain name is blank, 
then the SMTP address found in the user record 330 is 
used as the E-mail address. If a domain name is found 
in site record 350, then a juxtaposition of user name and 
domain name is utilized as the E-mail address. Step 440 
replaces the "send from/ reply to" addresses of the mes- 
sage to the E-mail address. Collectively, step 400 ac- 
complishes the domain-massaging feature. Steps 500, 
comprised of steps 510, 520, 530 and 540 collectively 
accomplish the tag-line customization. In step 510, the 
user tag line found in user record 330 is examined. If the 
user tag line is blank, then the site tag line found in record 
350 is utilized. If the user tag line is not blank, then it is 
utilized instead of the site tag line. The utilized tag line is 
appended to the message at step 540. Finally, step 288 
proceeds to send the message to the recipient designat- 
ed in the message via the Internet, as described in ref- 
erence to FIG. 8. 

[0111] Although not explicitly shown in the drawings, 
it is considered a variation of the present invention that 
is within the scope of the invention to perform other types 
of automated information substitution in message data 
items of which two examples have been illustrated in the 
case of domain-massaging and tag line customization in 
the redirector receive agent. 

[01 1 2] As illustrated in FIG. 1 2, the system 200 advan- 
tageously permits at least one ISP, such as ISP A 600, 
to provide wireless redirection for its customer base and 
customized single E-mail address transparency for a plu- 
rality of companies, such as Company A and Company 
B, by managing a distinct site for each company, in this 
case ISP A site 61 0, Company A site 612, and Company 
B site 614, with corresponding site manager accounts on 
the redirector system 200. Mobile device users associ- 
ated to each of those sites can configure their E-mail tag 
lines, and their E-mail addresses obtained byjuxtaposing 
their E-mail name and their custom site's domain name, 
by taking advantage of domain-massaging and tag line 



customization respectively, via the web-based user in- 
terface 256. 

[01 1 3] Continuing with the same example, if ISP A hav- 
ing a corresponding messaging host 230 wishes to offer 

5 wireless redirection to its base users, the web-based site 
admin page 257 is used to create a site manager account 
for the ISP by the system 200 administrator in the admin- 
istration information database 259 via the user interface 
257. The interface 257 is also used to create site manager 

^0 accounts for other sites managed by the ISP, such as 
Company A or Company B. The web-based administra- 
tion page 257 is also used to configure the name and 
authentication information of the redirector agent host 
server 243, and associated redirector send and receive 

^5 agents corresponding to each site. Then the ISP need 
only: a) provide configuration site information to the site 
info database 255 via the web based site information 
page 253, the site information corresponding to ISP site 
infrastructure such as the IP address of the mail handler 

20 232, associated site domain name, and the creation of 
individual mobile device user accounts for its mobile de- 
vice users; and b) add an entry for each of its mobile 
device users in the forward file 238. After the ISP mobile 
device user accounts 616, 616', 616" are created for 

25 each site, the ISP mobile device users can update their 
respective user information 254 using the web-based us- 
er admin page 256. 

[0114] To further illustrate this aspect of the present 
invention, an example is provided. ISP A provides wire- 

30 less redirection service of messages traditionally only 
hosted at and accessed via the ISP to mobile devices 
assigned to its traditional ISP customer base. Some of 
the ISP customers have customized domain names (i.e., 
domain.com) wherein the ISP hosts a web site (i.e., 

35 www.domain.com) and a plurality of E-mail addresses 
associated with the customized domain names (i.e., 
john(a)domain.com). Such customers who opt for the 
wireless redirection of their E-mail messages may con- 
tinue to use their customized E-mail addresses when 

^0 generating and receiving E-mail messages at their mo- 
bile device. When the systems 200 and 230 are config- 
ured for wireless redirection of E-mail directed to do- 
main. com, a method for redirecting messages between 
a ISP host system and a mobile data communication de- 

^5 vice is provided, the method comprising the steps of: con- 
figuring redirection settings foroneor more mobiledevice 
users at the host system; receiving incoming messages 
directed to a first address at the ISP host system from a 
plurality of message senders; in response to the redirec- 

50 tion setting, continuously redirecting the incoming mes- 
sages from the ISP host system to the mobile data com- 
munication device via a redirector host system; receiving 
outgoing messages generated at the mobile communi- 
cations device at the redirector host system; configuring 

55 address information of the outgoing messages so that 
the first address is used as an originating address of the 
outgoing messages; and transmitting the configured out- 
going messages to message recipients. 
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[0115] The systems described above with reference 
to FIGS. 6-12 redirect data items from a messaging host 
system to a mobile communication device through a wire- 
less redirection host system. Redirected data items are 
compressed and repackaged in the redirection host sys- 5 
tem before being forwarded to the wireless gateway for 
delivery to the mobile device, as shown as the message 
A in A' in FIG. 6 for example. 

[0116] In some redirection system implementations, 
however, it may be desirable to provide a secure link to 
a mobile device. A redirected data item must then be 
encrypted using an encryption key at some point within 
the redirection system and then decrypted at a mobile 
device using a decryption key corresponding to the en- 
cryption key. A common problem encountered in secur- 
ing such communications relates to providing the re- 
quired decryption key to the mobile device. 
[01 17] FIG. 1 3 is a block diagram of a redirection sys- 
tem adapted for securely redirecting data items from a 
messaging host system to a mobile device over a wire- 20 
less link. The system of FIG. 13 is substantially similar 
to the system in FIG. 6, but provides for an encryption 
key exchange between the redirection host system 240 
and the mobile device 220 as described in further detail 
below. 25 
[0118] In FIG. 13, a user is configured for redirection 
as described above. In order to provide for secure com- 
munications over the wireless link, a mobile device 220 
is then preferably connected to the user's desktop PC 
202 in the above example. This connection may, for ex- 3o 
ample, be a serial connection 203 to a port on the desktop 
PC 202 through a suitable connector such as a holder or 
cradle in which the device may be positioned by the user. 
Since the serial connection would normally be a relatively 
short link and can generally be monitored directly by the 35 
user, this link is a so-called "trusted" link, or connection, 
over which an encryption key can be loaded onto a device 
220. Although the device 220 is shown in two positions 
in FIG. 1 3, it should be apparent that both instances may 
represent the same mobile device 220 in this illustrative ^0 
example. 

[0119] According to a symmetric key encryption 
scheme, the device 220 shares secret information (a 
key), such as a random number, with the component in 
the system that encrypts redirected data items and de- 
crypts data items generated at the mobile device 220. In 
an embodiment of the invention, the key is generated at 
the redirection host system 240 by the redirector 242. 
The shared key might instead be generated at the user's 
desktop PC 202, dependent upon the user's movement 50 
of the PC's mouse and/or keystrokes entered at the desk- 
top PC for example. Generation of the key at the mes- 
saging host system 230, at the wireless gateway 260, or 
on the mobile device 220 itself is also contemplated. 
[0120] Regardless of where the key is generated, it 55 
must then somehow be provided to both the device 220 
and the encryption component within the system. This 
symmetric key distribution will now be described in terms 
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of an illustrative example. In the following description, it 
is assumed that the key is generated by the redirector 
242 in the redirection host system 240. 
[0121] When the key has been generated, it is stored 
at the redirector host system 240 for use in encrypting 
redirected data items. A secure message containing the 
key is then sent to the device 220 through the PC 202 
and serial connection 203. This secure message transfer 
may be accomplished using Internet Message Access 
Protocol (I MAP) over Secure Sockets Layer (SSL) or a 
secure web page for example. The key is then extracted 
from the secure message by either the PC 202 or the 
mobile device 220 and stored in the mobile device 220. 
[0122] After the key has been stored at both the redi- 
rector host system 240 and the mobile device 220, any 
redirected data items may be compressed and then en- 
crypted by the redirector software 242 before being sent 
to the mobile device 220 through the wireless gateway 
260. The device 220, using the stored key, decrypts and 
decompresses any received redirected data items to re- 
cover the original data item which was redirected from 
the messaging host system 230. 

[0123] A public key encryption scheme may also be 
used to secure redirected items. According to this aspect 
of the invention, a redirected data item is encrypted using 
a public key corresponding to a private key stored on the 
mobile device 220. The public key may be stored for ex- 
ample in a central key repository 205 from which it may 
be retrieved by the wireless redirector software 242. In 
a preferred embodiment, key generation and assignment 
is managed by the wireless redirector software 242. A 
key pair comprising a public key and a private key is 
generated and assigned to a particular mobile device 220 
by the wireless redirector software 242. The public key 
is then stored to the central repository 205 and the private 
key is sent over a secure connection to the device 220 
through the PC 202 and serial connection 203, using 
IMAP over SSL for example. The system then operates 
substantially as described above to encrypt redirected 
items before transmission over a wireless network to the 
mobile device 220. In order to provide for secure transfer 
of data items from the mobile device 220 to the redirector 
host system 240, a second key pair for the redirection 
host system must also be generated or assigned. Once 
generated and/or assigned, the redirector private key is 
stored within the redirector host system 240 and the re- 
director public key is similarly sent to the repository 205 
and preferably also to the device 220. 
[0124] In a related embodiment of the invention, the 
mobile device key pair is generated on the device 220 
and the redirector key pair is generated by the redirector 
242. The generated private keys are respectively stored 
on the device 220 and the redirector 242 and the public 
keys are sent to the key repository 205. In this embodi- 
ment, the device 220 must be able to communicate with 
the key repository 205, such as through the serial con- 
nection 203 and PC 202, or perhaps through the redirec- 
tor 242. The public keys may be retrieved from the re- 
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pository 205 according to any public key distribution 
sclieme. Tliese public keys might also be exchanged 
when a mobile device 220 is first registered with the re- 
director 242. When all required keys have been gener- 
ated and exchanged, data items sent between the mobile 
device 220 and the redirector 242 can then be encrypted. 
[0125] Encryption and decryption of data items sent 
from the mobile device 220, such as message B, may be 
accomplished using the same keys as those used for 
data items sent to the mobile device from the redirector, 
such as message A. Different keys may also be used. 
Regardless of the encryption scheme (symmetric key, 
public key, same or different keys, etc.), the mobile device 
220 must be able to decrypt data items encrypted by the 
redirector 242 (FIG. 1 3), 242A and vice versa. In a sym- 
metric key system in which the same keys are used for 
redirected data items and data items sent from the mobile 
device 220 for example, both the redirector 242, 242A 
and mobile device 220 must store an encryption key and 
a decryption key. Furthermore, the redirector 242, 242A 
must store such keys for every mobile device 220 for 
which it provides data item redirection. Other key storage 
requirements or arrangements will be apparent to those 
skilled in the art. 

[01 26] The encryption arrangements described above 
provide for secure data item transfer over the wireless 
network within which a mobile device 220 operates. An 
eavesdropper listening on the wireless network is thereby 
prevented from recovering the content of any redirected 
data items. However, the wireless network typically rep- 
resents only a portion of the communication link between 
a sender and the mobile device. For example, an incom- 
ing E-mail message A arriving at the messaging host 
system 230 may be sent from any PC 204 connected to 
the Internet. Common mail transfer mechanisms such as 
SMTP as shown in FIG. 7 are not easily adapted for se- 
cure communications, such that messages are normally 
sent "in the clear" or unencrypted over the Internet. In 
FIG. 13, the message A may also be transferred to the 
redirector 242 from the messaging hostsystem230 using 
SMTP and would therefore potentially not be secure be- 
tween the sender and the redirector software 242, where 
encryption of the message is performed in the above ex- 
ample. Messages composed at a mobile device 220 sim- 
ilarly remain encrypted only between the device 220 and 
the redirector 242, since the message must be decrypted 
at the redirector 242 for SMTP transfer to the messaging 
host system 230 and a recipient such as PC 204. Al- 
though message encryption according to the schemes 
described above secures the message between the re- 
director 242 and a mobile device 220, it may be desirable 
to avoid transferring messages destined for or generated 
at the mobile device 220 in the clear over the Internet to 
thereby enhance data item transfer security. 
[0127] According to a further aspect of the invention, 
the data item transfer between a messaging host system 
and a wireless redirection system over the Internet is 
avoided by integrating a redirection system with a mes- 



saging host system. Such a system is shown in FIG. 1 4. 
Since data items need not be transferred between the 
messaging host and the redirection host in the clear over 
the Internet, the above security risks are eliminated. 

5 [0128] As in FIGS. 6 and 13 above, FIG. 14 is an ex- 
ample system diagram showing the redirection of user 
data items, such as a message A, from user A's desktop 
PC 204 to user B's mobile data communication device 
220, or alternatively, message B from user B's mobile 

10 communication device 220 to user A. As in FIG. 1 3, both 
instances of the device 220 in FIG. 1 4 may represent the 
same mobile device 220. Although redirection is de- 
scribed primarily in the context of messaging, it is to be 
understood that the invention is in not limited to messag- 

15 ing. The specific implementations of redirection function- 
ality for other data item types may be somewhat different 
than messaging-related implementations, but the gener- 
al redirection principles and methods will be common and 
are therefore easily adaptable to such other data item 

20 types by those skilled in the art. 

[0129] In FIG. 14, the messaging host system 231 
maintains and stores data items received from the Inter- 
net 218 for user B in a message Inbox, as described 
above. The messaging host system 231 may be an ISP 

25 that provides connectivity to the Internet 21 8 for a plurality 
of users, including user B. The messaging host 231 may 
also comprise a web-based E-mail hosting service such 
as MSN Hotmail TM or a variety of other known web- 
based E-mail hosting systems. Unlike the messaging 

30 host systems described above, however, the messaging 
host 231 includes a redirector component 242. 
[0130] In this embodiment of the invention, the mes- 
saging host system 231 incorporates the wireless redi- 
rector program 242, which determines whether data 

35 items destined for a user of the messaging host system 
231 having a mobile communication device are user-se- 
lected data items to be pushed via a wireless network 
222 to the user's mobile communications device 220. 
Data items may thereby be continuously "pushed" to the 

^0 mobile communication device 220 through the wireless 
gateway 260 as they arrive at the messaging host system 
231, providing for "always on, always connected" TM 
functionality of the mobile device 220. 
[0131] In FIG. 14, as in the preceding Figures, mes- 

^5 sage A represents a data item, such as an E-mail mes- 
sage, sent from user A's desktop PC 204 having user B 
as the recipient. Because user B has a mailbox on the 
messaging host system 231, the message A will be di- 
rected via a WAN, such as the Internet 21 8, to the host 

50 system 231 . Similarly, message B represents a message 
created on and sent from user B's mobile data commu- 
nications device 220 having user A as a recipient. Alter- 
natively, message B may instead represent a command 
message from user B's mobile data communication de- 

55 vice 220 to the wireless redirector component 242. The 
flows of messages A and B are respectively shown as a 
single solid line 206A and a single dashed line 258B. 
[0132] The messaging host231 is shown in more detail 
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in FIG. 15. As above, the messaging liost system 231 is 
preferably a Unix system that includes a sendmail dae- 
mon 232 and a memory storage area 236 for storing the 
data items of certain users that are having messages 
redirected to their mobile data communication devices 
220. The messaging host231 also includes the redirector 
242A, along with the typical hardware and software as- 
sociated with an Internet gateway. The redirector 242A 
issimilartothe redirector 242, exceptthat redirector 242A 
need not include such messaging system components 
as a mail handler and delivery agents, which will be pro- 
vided as part of the messaging system 231 . A filter da- 
tabase 250 and a mobile user profile database 254 are 
used by the redirector 242A to determine a user's redi- 
rection characteristics, substantially as described above. 
[0133] Since the redirector 242A is incorporated into 
the messaging host system 231, data items for redirec- 
tion may be detected directly by the redirector 242A. The 
mail handler 232 stores incoming data items such as E- 
mail messages for example to the local store 236. Since 
only a single store is used in the integrated messaging 
and redirection system shown in FIG. 15, the redirector 
242A may query, poll, or otherwise access the local store 
236 to detect new data items in mailboxes for users with 
a mobile device. The mail handler 232 might instead be 
configured to notify the redirector 242A upon the arrival 
of new data items for redirection to a mobile device. Al- 
ternatively, a variant of the ".forward" file functionality de- 
scribed above might also be implemented, such that data 
items destined for users having a mobile device are for- 
warded to the redirector 242A. Other procedures for de- 
tecting new data items in the local store 236 will be ap- 
parent to those skilled in the art and as such are consid- 
ered to be within the scope of the invention. 
[01 34] Whether or not data items are to be redirected, 
incoming data items are preferably stored to a user's In- 
box in the local store 236. If a data item is to be redirected, 
a copy of the data item is sent to the mobile device, but 
the data item is not removed from the local message 
store 236. Such data items may be accessed by a user 
via the user's normal access method, POP3 or IMAP for 
example. The fonwarding of data items is therefore trans- 
parent to the user. In the example of E-mail message A, 
the user B when viewing the Inbox data items at his desk- 
top PC 202 would know of the redirecting activity only 
from message text that may be added to the messages 
as they are redirected. 

[0135] Assuming that the redirector program 242A is 
activated and has been configured by the user to replicate 
certain userdata items (such as message A) to the mobile 
communications device 220, when the message A is re- 
ceived at the messaging host system 231 , the redirector 
program 242A detects message A's presence. The user 
information in the store 254 and the filtering rules in the 
store 250 that are associated with the recipient, user B, 
are then used by the redirector 242A to determine how 
the message A should be handled. 
[01 36] Preferably, before the redirector program 242A 



begins preparing the message A for redirection, the re- 
director 242A examines the data item with respect to 
rules contained on the filtering agent 250 configurable 
by each mobile device user such as user B. The filtering 

5 agent 250 is essentially a database of rules that are to 
be applied for each user's incoming data items and is 
preferably accessible by the user via the World Wide Web 
in a filter web page 252. The filter web page 252 allows 
the user to access and select a plurality of filtering rules 

^0 or any combination thereof to be applied to all incoming 
data items destined for that user. The web page 252 also 
preferably allows user B to switch between an active or 
a de-active state for the redirection of user B's incoming 
messages. This switching feature is particularly useful 

^5 during instances where user B is at his desktop PC 202 
and accessing his inbox of the local store 236 and desires 
that the redirection of incoming mail to his mobile device 
220 be temporarily deactivated. Such deactivation may 
be automatically initiated when the device 220 is con- 

20 nected to the desktop 202 via serial connection 203 for 
example. The types of filtering rules that maybe available 
to the user include: sender(s); how addressed (To, CC, 
BCC); subject keyword(s); message keyword(s); and im- 
portance (high, low, normal). Data items that do not clear 

25 the filtering rules are marked as "handled" by the redi- 
rector program 242A in the data item store 236, and are 
not further handled by the redirector 242A. 
[0137] The filter agent 250 is preferably stored at the 
messaging host system 231, but may instead be stored 

30 at any location accessible to the redirector 242A. As de- 
scribed above, the filter agent may be integrated with the 
user information store 254. 

[01 38] Also accessible by the redirector program 242A 
is a user prof lie database 254, which includes the address 

35 of the user's mobile data communication device 220, the 
user's SMTP address, the type of device 220, and wheth- 
er the device 220 can accept certain types of attach- 
ments, such as word processing or voice attachments. 
The user information may be preferably created, updated 

^0 and removed via a user administration arrangement 261 . 
Although user administration functions may be provided 
through Web page 256 as shown in FIG. 1 3, for example, 
since the redirector 242A is incorporated into the mes- 
saging host system 231 , and user administration is nor- 

^5 mally access-restricted to the system administrator of the 
messaging host system, redirector user administration 
is preferably integrated with the administration functions 
of messaging host system 231. The messaging system 
administrator preferably has a switch control feature to 

50 deactivate or activate redirection of the data items from 
the host system 231 that takes precedence over the us- 
er's selection on web page 252. This, advantageously, 
allows the system administer to maintain control over the 
value-added service described herein. In accordance 

55 with a further aspect of the invention, the administrator 
may also set global filtering rules to be applied to data 
items for all redirector users. 

[0139] If the user's type of mobile device 220 cannot 
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accept certain types of attachments, then the redirector 
program 242A can be configured to route the attach- 
ments to a fax or voice number where the user is located. 
The user may provide such information details to the re- 
director program 242A via a return message. 5 
[0140] After the redirector program 242A has deter- 
mined that a particular message should be redirected, 
the message is preferably compressed and encrypted. 
A symmetric key or public key encryption scheme may 
be used. In a symmetric key scheme, the keys may be 
generated by the redirector 242A, the desktop 202 or the 
device 220 and distributed to or from the device via serial 
connection 203 and a secure transfer mechanism such 
as IMAP over SSL, as described above. When a public 
key encryption scheme is used, the public key for the 
user of the mobile device is stored in a key repository 
205 (FIG. 14) and can be accessed by the redirector 
242A. Although FIG. 1 4 shows key generation at the re- 
director 242A, the user's private key is preferably gener- 
ated either at the mobile device 220 or at the desktop PC 20 
202, since the private key is then either already on the 
device 220 or must be transferred only over the connec- 
tion 203. After a data item such as message A has been 
compressed and encrypted, the redirector program 242A 
preferably packages the data item as a message with an 25 
outer envelope A' that contains addressing information 
of the mobile device 220. The wireless gateway 260 re- 
quires this outer envelope information A' in order to know 
where to send the redirected message A. The mobile 
device 220 removes the outer envelope A' and decrypts 3o 
the message using the appropriate key and decompress- 
es the decrypted message to recover the original data 
item, message A. 

[0141] If the redirected user data item is an E-mail mes- 
sage, as described above, then the user at the mobile 35 
device 220 sees the original subject line, sender's ad- 
dress, destination address, and carbon copy address. 
Preferably and desirably, the redirection of the E-mail 
message A is transparent to the mobile communication 
device user. When the user, at the mobile device 220, ^0 
replies to message A, or when the user composes a new 
message (a reply or a new message collectively referred 
to as "message B"), the new message is compressed, 
encrypted and repackaged in a similar outer envelope 
(message B') to cause message B to be routed to the 
redirector 242A via the wireless network 222, wireless 
gateway 260 and internet or other WAN connection 258. 
The redirector 242A then removes the outer envelope 
B', decrypts and decompresses the message B and 
repackages message B as message B" where necessary 50 
to direct message B" to its final destination, such as user 
A's PC desktop 204. 

[0142] The general flow of a data item from a mobile 
device 220 to an addressee is shown as a dotted line in 
FIGs. 14 and 15. The removal of the outer envelope B' 55 
and repackaging of message B into envelope B" results 
in the outgoing message B" from the messaging host 
system 231 being sent using the E-mail address of the 



user's mailbox on messaging host system 231, rather 
than the address of the mobile device 220. Thus, it ap- 
pears to the recipient of the message B" that the mes- 
sage originated from the user's desktop system 202 or 
from the messaging host system 231 itself (as would be 
the case of a web-based E-mail hosting system) rather 
than the mobile data communication device 220. This is 
accomplished by the redirector 242 modifying 
the "from" and "reply to" identifiers associated with the 
message B to now have the SMTP address of user B's 
messaging host system 231 E-mail account. Advanta- 
geously, any replies to the message B" will then be sent 
to user B's Inbox on messaging host system 231 , which, 
if it is still in redirector mode, will repackage the reply and 
resend it to user B's mobile data device 220, as described 
above. 

[0143] In the integrated messaging/redirector system 
231 , a copy of message B is redirected to user B's Inbox 
in the local store 236 for retrieval and access by user B 
at some later time. In doing so, the redirector program 
242A preferably repackages message B as message B"' 
so as to have modified addressing information. In this 
preferred instance, the modified addressing information 
would include changing the "from" header information to 
indicate that the message was sent from mobile commu- 
nications device. This message B'" is forwarded, possibly 
through the mail handler 232, to the local store 236. 
[01 44] As described above, the integrated messaging/ 
redirection host system 231 is preferably configured as 
an ISP or an ASP. Here, the system 231 includes a send- 
mail daemon 232, which would forward the copy B'" to 
the local data item store 236 by a local delivery agent 
(not shown). A user may preferably configure his local 
Inbox of data items at the desktop 202 to store such copy 
messages in a specific Inbox for mobile data communi- 
cations device data items. However, in the illustrative ex- 
ample of messaging host system 231 configured to re- 
direct all incoming data items, message B"' is redirected 
(not shown) to redirector 242A. The redirector is prefer- 
ably programmed to detect that the message B"' is a 
redirection of message B"' sent therefrom. As such, the 
redirector ignores this re-redirected message. Alterna- 
tively, the mail handler 232 at the messaging host system 
231 may be configured to detect such messages and to 
not redirect such messages. Since the redirector 242A 
is integrated with the messaging host system 231, this 
re-redirection of the copy data items is more easily avoid- 
ed than in the above two-host systems. For example, in 
implementations where the redirector 242A directly ac- 
cesses the local message store to detect new data items, 
it could be configured to quickly identify and ignore such 
copy messages. 

[0145] The operation of the redirector program 242A 
is substantially as shown in the flow chart of FIG. 8 and 
described above. Although the communications between 
the messaging and redirector components within the 
messaging host system 231 and the specific configura- 
tions thereof are somewhat different than in the above 
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two-host system, once a new message for redirection is 
detected, redirection operations proceed as sliown in 
FIG. 8. 

[0146] Tine redirection system shown in FIGs. 14 and 
15 provides for secure communications between a mo- 5 
bile device 220 and the messaging host system 231 . A 
significant advantage of such a system is that data item 
redirection does not compromise any security measures 
which may be implemented by an ISP or ASP to protect 
data items stored on a messaging system or server. As 
stated above, although the following detailed description 
is based primarily on an illustrative example of ISPs, 
those skilled in the art will appreciate that similar arrange- 
ments may be implemented for ASPs. 
[0147] In the two-host system described above, data 
items are sent in the clear between the messaging host 
system 230 and the wireless redirector host system 240. 
Even though access to such data items on the messaging 
host system 230 may be restricted by an ISP through 
firewall arrangements and logon scripts for example, data 20 
items sent from the messaging host system 230 to the 
redirector host system 240 may be intercepted. With the 
secure integrated messaging/redirector system 231 
shown in FIGs. 14 and 15 however, data items are secure 
between the ISP system and the mobile device 220. Even 25 
if these encrypted data items are intercepted, they are 
encrypted and therefore cannot be read. Where such a 
strong encryption algorithm as triple-DES (Data Encryp- 
tion Standard) is used, decryption of such intercepted 
data items is computationally infeasible. The protection 3o 
inherent in the ISP arrangements is therefore not com- 
promised by redirection of data items. In the above ex- 
ample, firewall and logon protection are thereby effec- 
tively extended to the mobile device 220. This feature of 
the integrated messaging/redirection host system 231 35 
may be particularly important for certain groups of users 
having E-mail accounts on the same ISP. Members of a 
work group for example would be assured that inter- 
group messages maintain the same level of security 
whether a member receives such messages on a desk- ^0 
top system or a mobile communication device. 
[0148] Where the redirector 242A is integrated with a 
messaging host system 231 , redirection will typically be 
provided only for the particular service provider operating 
the messaging host system 231 . However, the redirector 
242A may be implemented with a distributed processing 
architecture, as shown in FIG. 16, to provide for redirec- 
tion of data items for users on multiple domains hosted 
by the ISP, indicated as 233, 233a and 233b in FIG. 1 6. 
As described above in conjunction with FIGs. 9 and 10, 50 
the redirector program 242A may comprise multiple re- 
director send agents 245 and associated redirector re- 
ceive agents 249, a pair of which can be hosted on sep- 
arate redirector agent host servers 243, thereby provid- 
ing forscaleable and easily configurable multiple-domain 55 
redirection. A single redirector agent host server can sup- 
port several pairs of send and receive agents, each pair 
of agents preferably serving a domain site. In some im- 



plementations, more than one send/receive agent pair 
may serve a particular domain. It is also contemplated 
that a domain may be served by different numbers of 
send agents and receive agents. 

[0149] The mapping of redirector host servers to do- 
mains and the configuration of redirector agents are ac- 
complished via the administration arrangement 261 for 
the administration information database 259. Since the 
redirector is integrated with the messaging system, redi- 
rector administration 257 and redirector user administra- 
tion 261 are preferably integrated within the messaging 
system. If remote administration of system 231 is desired, 
to allow users to access information in the user informa- 
tion store 254 for example, these administration functions 
may also be provided through web-based interfaces, as 
described above. The interface to site information in the 
database 255 is shown as internal to the messaging host 
system 231 , since the ISP is hosting such sites, although 
a web-based interface may be provided where site man- 
agers represent ISP-hosted internet domains and man- 
age corresponding site information records. User filter 
rules may be established by each user as described 
above and access to the filter agent 250 is therefore pref- 
erably provided through the web-based interface 252. 
[0150] A mobile device user, when provided with an 
account, can preferably access the user information da- 
tabase 254 via web based user administration page (not 
shown), in order to update fields of their user information 
record for which they have authority. For instance, a user 
might wish to override a default E-mail tag line, thereby 
enabling the above tag-line customization feature. The 
user might also wish to override a default domain name 
based E-mail address by specifying an SMTP address, 
thereby enabling domain-massaging. 
[0151] The system of FIG. 16 operates substantially 
as described above, except that new messages are re- 
trieved from the local data item store 236 in the integrated 
messaging/redirection system in the messaging host 
system 231 . The redirector send and receive agents can 
access the local store 236, such that the wireless data 
item store 248 is no longer required. Othenwise, the dis- 
tributed system operates as described above. 
[0152] As illustrated in FIG. 1 7, the system of FIG. 16 
advantageously permits an ISP, such as ISP A 700, to 
provide wireless redirection for its customer base and 
customized single E-mail address transparency for a plu- 
rality of companies, such as Company A and Company 
B, by managing a distinct site for each company, in this 
case ISP A site 71 0, Company A site 71 2, and Company 
B site 714. Mobile device users associated to each of 
those sites can configure their E-mail tag lines and E- 
mail addressees obtained by juxtaposing their E-mail 
name and their custom site's domain name, by taking 
advantage of the domain-massaging and tag line cus- 
tomization features. Secure communications between 
the redirector 242A and any mobile devices in accord- 
ance with an aspect of the invention may be particularly 
important to such ISP clients as Company A and Com- 
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pany B. 

[0153] Although the integrated messaging/redirection 
system has been described above primarily in the context 
of providing for data item redirection for only a single ISP, 
including any domains hosted by the ISP, an ISP may 
extend its redirection services to other ISPs. Such an 
arrangement would effectively be a hybrid between the 
two-host system such as shown in FIG. 6 and the inte- 
grated system as shown for example in FIG. 14. The 
overall system diagram would be substantially as shown 
in FIG. 6, although the second host system 240 would 
be an integrated messaging/redirection system 240A as 
shown in FIG. 1 8. In such a system, the integrated mes- 
saging/redirection host system 240A provides messag- 
ing and redirection services to itown users 202 and 202a, 
while also providing redirection services for a different 
host system such as 230, having users such as 202b. 
[0154] In this embodiment of the invention, the mes- 
saging host system 230 is configured so as to forward a 
copy of incoming data items destined for the Inbox of a 
user such as 202b to the integrated messaging/redirec- 
tion host system 240A for redirection to the user's mobile 
device 220. Data items destined for users of the mes- 
saging host system 230 having a mobile communication 
device are thereby continuously "pushed" to the integrat- 
ed host system 240A as they arrive at the messaging 
host system 230. Upon arrival at the integrated host sys- 
tem 240A, the redirector 242 at the system 240A deter- 
mines whether such data items are user-selected data 
items to be pushed to the user's mobile communications 
device 220. 

[0155] The integrated host system 240A acts not only 
as an ISP and redirector for its own users and possibly 
users of domains hosted by the ISP, shown as 202 and 
202a, but also as a gateway for data items received from 
the first host system 230 through the Internet 21 8 or other 
WAN. Redirection of data items destined for host 240A 
users such as 202 and 202a proceeds as described 
above, with the redirector 242 having direct access to 
the local data item store 236. The data or message flows 
relating to such redirection have therefore not been 
shown in FIG. 1 8. The solid and dashed lines respectively 
indicate the flows for data items A forwarded from the 
first host system 230 and data items B originating at a 
mobile device 220 for a user of the first host system 230. 
[0156] The integrated host system 240A according to 
this embodiment of the invention preferably includes, 
along with the typical hardware and software associated 
with an Internet gateway, the redirector 242 which itself 
may include a mail handler (not shown), preferably a 
sendmail daemon (notshown), and a local delivery agent 
(not shown), a plurality of wireless mail stores 248 (pref- 
erably one for each mobile user such as user 202b as- 
sociated with an external ISP), a filter database 250, and 
a mobile user profile database 254. 
[0157] This embodiment of the invention is intended 
to be as non-obtrusive as possible to the messaging host 
system 230. The messaging host system 230 may be 



configured in many ways to detect such messages, as 
described above. For example, using the ".forward" file 
238, new data items are detected and forwarded to the 
integrated host system 240 A. Other methods of detecting 
5 and forwarding new data items destined for a user having 
a mobile communications device 220 could also be used 
and such other methods are well within the scope of the 
invention. 

[0158] If the redirector242 is activated at the integrated 
^0 host system 240A, and has been configured by the user 
to replicate certain user data items (such as message A) 
to the mobile communications device 220, when the mes- 
sage A is received at the integrated host system 240A, 
the redirector program 242 detects message A and pre- 
^5 pares the message for a second redirection to the mobile 
device 220. As described above, the message may be 
compressed and encrypted before being repackaged in- 
to an outer envelope for redirection through the wireless 
gateway 260 and wireless network 222 to the mobile de- 
20 vice 220. The mobile device then removes the outer en- 
velope, decompresses and decrypts received data items 
as required. 

[0159] Users such as 202 and 202a, "native" to the 
integrated host 240A, may be configured for redirection 

25 by a system 240A administrator, through the internal user 
administration 261. External redirection users such as 
202b would preferably be configured with a web-based 
user administration tool 256. However, the ISP or oper- 
ator of the integrated system 240A may also maintain at 

30 least partial control over the administration of external 
users through either the web-based administration tool 
256 or internal administration arrangement 261 . It is con- 
templated that administrative functions for external redi- 
rection users may require coordination between admin- 

35 istrators of the integrated host system 240A and the ex- 
ternal host system 230. 

[01 60] The filtering rules stored by filter agent 250 are 
established by each user 202, 202a, 202b through the 
web-based interface 252. Regardless of whether a user 

^0 is native or external to the ISP operating the integrated 
host 240A, once the user has been configured by system 
administrators to enable redirection functions, filter rules 
may be established via the preferably secure web inter- 
face 252 and stored to filter agent 250. 

^5 [0161] When a user of host system 230 has been con- 
figured for redirection of data items to a mobile device 
220 through the integrated system 240A, the redirector 
242 operates substantially as described above and 
shown in FIG. 8 to redirect data items to and from the 

50 user's mobile device 220. 

[0162] Since the redirector 242 is integrated with a 
messaging system in the embodiment of the invention 
shown in FIG. 18, the existing messaging system com- 
ponents such as the mail handler 232, delivery agents 

55 (not shown) and data item store 236 may be used by the 
redirector and the first host system 230 to communicate 
redirected data items. Such a system is shown in FIG. 
19. The redirector 242A, as described above, need not 
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incorporate its own mail Inandler in tliis embodiment, as 
described above. Redirected data item transfer is accom- 
plislied tlirougli the mail handler 232 and delivery agents 
(not shown) in the integrated host system 240B. A further 
advantage of the integrated host system 240B in FIG. 1 9 
is that the redirector 242A directly accesses the local 
data item store 236, thereby simplifying new data item 
detection and eliminating the wireless data item store 
248. 

[0163] Having described in detail several preferred 
embodiments of the present invention, including pre- 
ferred methods of operation, it is to be understood that 
this operation could be carried out with different elements 
and steps. Many variations on the invention will be obvi- 
ous to those knowledgeable in the field, and such obvious 
variations are within the scope of the invention as de- 
scribed and claimed, whetheror not expressly described. 
[0164] For example, further security measures maybe 
implemented to provide for end-to-end secure data item 
transfer, including redirection. Communications between 
a messaging host system such as 230 and a wireless 
redirector host system 240, 240A, 240B, may be protect- 
ed by using a secure E-mail scheme such as so-called 
Pretty Good Privacy TM (PGP TM). Alternatively, the 
public key encryption arrangements described above 
may also be extended to provide for secure communica- 
tions between any sender (including a sender such as 
user A, external to the messaging host system 230, 231 ) 
and the messaging host system 230, 231 or integrated 
host system 240A, 240B. In such systems, the redirector 
may simply repackage a received encrypted data item 
for forwarding to or from a mobile device, since the data 
item has already been encrypted. 

[01 65] Also, although the system diagrams show mul- 
tiple connections between the various components, 
those skilled in the art will appreciate that such connec- 
tions are intended primarily to illustrate data flows. In ac- 
tual system implementations, data item transfer between 
the redirector 242A and the local data item store 236 may 
be accomplished using a single connection. Similarly, 
the redirector 242, 242A is preferably connected to the 
wireless gateway 260 through a single connection. This 
single connection is most preferably maintained open 
when established, thereby providing for near real-time 
data item redirection and "always on, always connected" 
TM functionality for all mobile devices 220. 

Claims 

1 . A method of redirecting data items from a messaging 
host system to a user's mobile device, comprising 
the steps of: 

establishing a secure communications link be- 
tween a redirector host system and the user's 
mobile device; 

generating a first encryption key at the redirector 



host system; 

storing the first encryption key at the redirector 
host system; 

generating a first decryption key at the redirector 

5 host system; 

forwarding the first decryption key from the re- 
director host system to the user's mobile device 
using the secure communications link; 
detecting a new data item for the user at the 

^0 messaging host system by the redirector host 

system; 

receiving a copy of the new data item at the re- 
director host system; determining whether the 
new data item should be redirected from the re- 

^5 director host system to the user's mobile device; 

if the new data item should be redirected, then 
encrypting the new data item to form an encrypt- 
ed new data item using a cipher algorithm and 
the first encryption key at the redirector host sys- 

20 tem; and 

transmitting the encrypted new data item from 
the redirector host system to the user's mobile 
device. 

25 2. The method as recited in claim 1, wherein the step 
of establishing a secure communications link be- 
tween a redirector host system and the user's mobile 
device further comprises establishing a serial con- 
nection between redirector host system and the us- 

30 er's mobile device. 

3. The method as recited in claim 1, wherein the step 
of establishing a secure communications link be- 
tween a redirector host system and the user's mobile 

35 device further comprises using Internet Message Ac- 
cess Protocol (IMAP) over Secure Sockets Layer 
(SSL) protocol. 

4. The method as recited in claim 1 , wherein the steps 
^0 of generating a first encryption key at the redirector 

host system and generating a first decryption key at 
the redirector host system further comprise gener- 
ating a shared key. 

^5 5. The method as recited in claim 1, wherein the first 
encryption key and the first decryption key are gen- 
erated according to a symmetric key encryption 
scheme. 

50 6. The method as recited in claim 1, wherein the step 
of generating a first encryption key at the redirector 
host system further comprises generating a public 
key. 

55 7. The method as recited in claim 6, wherein the step 
of generating a first decryption key at the redirector 
host system further comprises generating a private 
key. 
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8. The method as recited in claim 1 further comprising 
the steps of: 

receiving the encrypted new data item at the us- 
er's mobile device; and 5 
decrypting the encrypted new data item to re- 
cover the new data item using a cipher algorithm 
and the first decryption key. 

9. The method as recited in claim 8 further comprising 
the step of storing the new data item within a memory 
of the user's mobile device. 

10. The method as recited in claim 8 further comprising 
the steps of: 

generating a second decryption key at the redi- 
rector host system; 

storing the second decryption key at the redirec- 
tor host system; 20 
generating a second encryption key at the redi- 
rector host system; and 

forwarding the second encryption key from the 
redirector host system to the user's mobile de- 
vice using the secure communications link. 25 

1 1 . The method as recited in claim 1 0, wherein the steps 
of generating a second encryption key at the redi- 
rector host system and generating a second decryp- 
tion key at the redirector host system further com- 3o 
prise generating a shared key. 

12. The method as recited in claim 10, wherein the sec- 
ond encryption key and the second decryption key 

are generated according to a symmetric key encryp- 35 
tion scheme. 

13. The method as recited in claim 10, wherein the step 
of generating a second encryption key at the redi- 
rector host system further comprises generating a ^0 
public key. 

14. The method as recited in claim 13, wherein the step 
of generating a second decryption key at the redi- 
rector host system further comprises generating a 
private key. 

1 5. The method as recited in claim 1 0 further comprising 
the steps of: 



1 6. The method as recited in claim 1 5 further comprising 
the steps of: 

receiving the encrypted reply data item at the 
redirector host system; 

decrypting the encrypted reply data item to re- 
cover the reply data item; and 
transmitting the reply data item to the messaging 
host system. 

1 7. The method as recited in claim 1 6 further comprising 
the step of transmitting the reply data item to a des- 
tination system using an electronic address associ- 
ated with the user at the messaging host system, 
wherein reply data items created at either the mes- 
saging hostsystem orthe user's mobile device share 
the electronic address as an originating address. 

1 8. A system for redirecting data items from a messaging 
host system to a user's mobile device, comprising 
the steps of: 

means for establishing a secure communica- 
tions link between a redirector host system and 
the user's mobile device; 
means for generating a first encryption key at 
the redirector host system; means for storing the 
first encryption key at the redirector hostsystem; 
means for generating a first decryption key at 
the redirector host system; 
means for forwarding the first decryption key 
from the redirector host system to the user's mo- 
bile device using the secure communications 
link; 

means for detecting a new data item for the user 
at the messaging host system by the redirector 
host system; 

means for receiving a copy of the new data item 
at the redirector host system; 
means for determining whether the new data 
item should be redirected from the redirector 
host system to the user's mobile device; 
means for encrypting the new data item to form 
an encrypted new data item using a cipher al- 
gorithm and the first encryption key at the redi- 
rector host system; and 

means for transmitting the encrypted new data 
item from the redirector hostsystem to the user's 
mobile device. 

19. The system as recited in claim 18, wherein the 
means for establishing a secure communications 
link between a redirector host system and the user's 
mobile device further comprises a serial connection 
between redirector host system and the user's mo- 
bile device. 

20. The system as recited in claim 18, wherein the 



50 

preparing a reply data item at the user's mobile 
device that is related to the new data item; 
encrypting the reply data item at the mobile de- 
vice to form an encrypted reply data item using 
a cipher algorithm and the second encryption 55 
key; and 

transmitting the encrypted reply data item to the 
redirector host system. 
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means for establishing a secure communications 
link between a redirector host system and the user's 
mobile device further comprises means for using In- 
ternet Message Access Protocol (IMAP) over Se- 
cure Sockets Layer (SSL) protocol. 5 

21. The system as recited in claim 18, wherein the 
means for generating a first encryption key at the 
redirector host system and the means for generating 
a first decryption key at the redirector host system 
further comprise means for generating a shared key. 

22. The system as recited in claim 18, wherein the 
means for generating a first encryption key at the 
redirector host system and the means for generating 
a first decryption key at the redirector host system 
further comprise means for generating the first en- 
cryption key and the first decryption key according 
to a symmetric key encryption scheme. 

20 

23. The system as recited in claim 18, wherein the 
means for generating a first encryption key at the 
redirector host system further comprises means for 
generating a public key. 

25 

24. The system as recited in claim 23, wherein the 
means for generating a first decryption key at the 
redirector host system further comprises means for 
generating a private key. 

30 

25. The system as recited in claim 18 further comprising: 



26. The system as recited in claim 25 further comprising 
means for storing the new data item within a memory 
of the user's mobile device. 

27. The system as recited in claim 25 further comprising: 

means for generating a second decryption key 
at the redirector host system; 
means for storing the second decryption key at 
the redirector host system; means for generat- 
ing a second encryption key at the redirector 
host system; and 50 
means for forwarding the second encryption key 
from the redirector host system to the user's mo- 
bile device using the secure communications 
link. 

55 

28. The system as recited in claim 27, wherein the 
means for generating a second encryption key at the 
redirector host system and the means for generating 



a second decryption key at the redirector host sys- 
tem further comprise means for generating a shared 
key. 

29. The system as recited in claim 27, wherein the 
means for generating a second encryption key at the 
redirector host system and the means for generating 
a second decryption key at the redirector host sys- 
tem further comprise means for generating the sec- 
ond encryption key and the second decryption key 
according to a symmetric key encryption scheme. 

30. The system as recited in claim 27, wherein the 
means for generating a second encryption key at the 
redirector host system further comprises means for 
generating a public key. 

31. The system as recited in claim 30, wherein the 
means for generating a second decryption key at the 
redirector host system further comprises means for 
generating a private key. 

32. The system as recited in claim 27 further comprising: 

means for preparing a reply data item at the us- 
er's mobile device that is related to the new data 
item; 

means for encrypting the reply data item at the 
mobile device to form an encrypted reply data 
item using a cipher algorithm and the second 
encryption key; and 

means for transmitting the encrypted reply data 
item to the redirector host system. 

33. The system as recited in claim 32 further comprising: 

means for receiving the encrypted reply data 
item at the redirector host system; 
means for decrypting the encrypted reply data 
item to recover the reply data item; and 
means for transmitting the reply data item to the 
messaging host system. 

34. The system as recited in claim 33 further comprising 
the means for transmitting the reply data item to a 
destination system using an electronic address as- 
sociated with the user at the messaging host system, 
wherein reply data items created at either the mes- 
saging hostsystem orthe user's mobile device share 
the electronic address as an originating address. 

35. A computer-accessible medium having a sequence 
of instructions which, when executed by a process- 
ing entity, effectuate redirection of data items from 
a messaging host system to a user's mobile device, 
the computer-accessible medium comprising: 

a code portion for establishing a secure commu- 



means for receiving the encrypted new data item 
at the user's mobile device; and 
means for decrypting the encrypted new data 35 
item to recover the new data item using a cipher 
algorithm and the first decryption key. 
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Plications linl< between a redirector Inost system 

and tine user's mobile device; 

a code portion for generating a first encryption 

key at tine redirector liost system; 

a code portion for storing tine first encryption key 5 

at the redirector host system; 

a code portion for generating a first decryption 

key at the redirector host system; 

a code portion for forwarding the first decryption 

key from the redirector host system to the user's 

mobile device using the secure communications 

link; 

a code portion for detecting a new data item for 
the user at the messaging host system by the 
redirector host system; 

a code portion for receiving a copy of the new 
data item at the redirector host system; 
a code portion for determining whether the new 
data item should be redirected from the redirec- 
tor host system to the user's mobile device; 20 
a code portion for encrypting the new data item 
to form an encrypted new data item using a ci- 
pher algorithm and the first encryption key at the 
redirector host system; and 

a code portion for transmitting the encrypted 25 
new data item from the redirector host system 
to the user's mobile device. 

36. The computer-accessible medium as recited in claim 

35, wherein the code portion for establishing a se- 3o 
cure communications link between a redirector host 
system and the user's mobile device further com- 
prises a code portion for establishing a serial con- 
nection between redirector host system and the us- 
er's mobile device. 35 

37. The computer-accessible medium as recited in claim 
35, wherein the code portion for establishing a se- 
cure communications link between a redirector host 
system and the user's mobile device further com- ^0 
prises a code portion for using Internet Message Ac- 
cess Protocol (I MAP) over Secure Sockets Layer 
(SSL) protocol. 

38. The computer-accessible medium as recited in claim 
35, wherein the code portions for generating a first 
encryption key at the redirector host system and gen- 
erating a first decryption key at the redirector host 
system further comprise a code portion for generat- 
ing a shared key. 50 

39. The computer-accessible medium as recited in claim 
35, wherein the code portions for generating a first 
encryption key at the redirector host system and gen- 
erating a first decryption key at the redirector host 55 
system further comprise a code portion for generat- 
ing the first encryption key and the first decryption 
key according to a symmetric key encryption 



scheme. 

40. The computer-accessible medium as recited in claim 
35, wherein the code portion for generating a first 
encryption key at the redirector host system further 
comprises a code portion for generating a public key. 

41 . The computer-accessible medium as recited in claim 
40, wherein the code portion for generating a first 
decryption key at the redirector host system further 
comprises a code portion for generating a private 
key. 

42. The computer-accessible medium as recited in claim 
35 further comprising: 

a code portion for receiving the encrypted new 
data item at the user's mobile device; and 
a code portion for decrypting the encrypted new 
data item to recover the new data item using a 
cipher algorithm and the first decryption key. 

43. The computer-accessible medium as recited in claim 
42 further comprising a code portion for storing the 
new data item within a memory of the user's mobile 
device. 

44. The computer-accessible medium as recited in claim 
42 further comprising: 

a code portion for generating a second decryp- 
tion key at the redirector host system; 
a code portion for storing the second decryption 
key at the redirector host system; 
a code portion for generating a second encryp- 
tion key at the redirector host system; and 
a code portion for forwarding the second encryp- 
tion key from the redirector host system to the 
user's mobile device using the secure commu- 
nications link. 

45. The computer-accessible medium as recited in claim 
44, wherein the code portions for generating a sec- 
ond encryption key at the redirector host system and 
generating a second decryption key at the redirector 
host system further comprise a code portion for gen- 
erating a shared key. 

46. The computer-accessible medium as recited in claim 
44, wherein the code portions for generating a sec- 
ond encryption key at the redirector host system and 
generating a second decryption key at the redirector 
host system further comprise a code portion for gen- 
erating the second encryption key and the second 
decryption key according to a symmetric key encryp- 
tion scheme. 

47. The computer-accessible medium as recited in claim 
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44, wherein the code portion forgenerating a second tronic envelope to the user's mobile device, 

encryption key at the redirector host system further 
comprises a code portion for generating a public key. 

48. The computer-accessible medium as recited in claim 5 
47, wherein the code portion for generating a second 
decryption key at the redirector host system further 
comprises a code portion for generating a private 
key. 

10 

49. The computer-accessible medium as recited in claim 
44 further comprising: 

a code portion for preparing a reply data item at 
the user's mobile device that is related to the 
new data item; 

a code portion for encrypting the reply data item 
at the mobile device to form an encrypted reply 
data item using a cipher algorithm and the sec- 
ond encryption key; and 20 
a code portion for transmitting the encrypted re- 
ply data item to the redirector host system. 

50. The computer-accessible medium as recited in claim 

49 further comprising: 25 

a code portion for receiving the encrypted reply 
data item at the redirector host system; 
a code portion for decrypting the encrypted reply 
data item to recover the reply data item; and 3o 
a code portion for transmitting the reply data item 
to the messaging host system. 

51 . The computer-accessible medium as recited in claim 

50 further comprising a code portion for transmitting 35 
the reply data item to a destination system using an 
electronic address associated with the user at the 
messaging host system, wherein reply data items 
created at either the messaging host system or the 
user's mobile device share the electronic address ^0 
as an originating address. 

52. A method of redirecting data items from a messaging 
host system to a user's mobile device, comprising 
the steps of: 

detecting a new data item for the user at the 
messaging host system; 

forwarding a copy of the new data item to a re- 
director host system; 50 
determining whether the new data item should 
be redirected from the redirector host system to 
the user's mobile device; and 
if the new data item should be redirected, then 
encrypting the new data item to form an encrypt- 55 
ed new data item; and 

packaging the encrypted new data item into an 
electronic envelope and transmitting the elec- 
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